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Also  inside:  You  Want  Me  in  the  Office?  How  20th  Century  of  You.  16 

Cloud  Computing  s  Big  Debt  to  NASA  10 


Peer  Perspective.  IT  Leadership.  Business  Results,  i  computerworld.com  i  march  25, 2013 
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DOWNLOAD .  SPIN  UP  BREAK  OUT \ 


The  open  age  started  with  Linux.  Next  came  Android.  Then,  Rackspace  and  NASA  created 
OpenStack  and  open-sourced  the  biggest  platform  of  them  all.  It’s  called  the  open  cloud. 
Now,  you’re  no  longer  locked  in  to  the  pricing,  service  limitations,  or  pace  of  innovation 
of  any  one  vendor.  You’re  free  to  run  your  cloud  anywhere  you  want:  in  your  data  center, 
in  ours,  or  with  any  other  OpenStack  provider— and  the  response  has  been  overwhelming. 
More  than  800  organizations  and  6,000  individuals  are  collaborating  on  OpenStack.  This 
is  greater  than  one  company.  It’s  a  movement. 


With  over  200,000  customers  and  more  than  60%  of  the  FORTUNE®  100  trusting  our 
Fanatical  Support®,  we’ve  done  big  things  at  Rackspace  before— but  this  is  the  biggest. 


Try  it  today.  Download  the  open  cloud  at  rackspace.com/open 
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Rackspace  and  Fanatical  Support  are  service  marks  of  Rackspace  US,  Inc.  All  trademarks 
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SMARTER  TECHNOLOGY  FOR  A  SMARTER  PLANET 


FROM  DETAILS  TO  DESIRES: 


Companies  aren’t  short  on 
data.  In  fact,  with  the  average 
large  business  storing  more 
than  200  terabytes,  companies 
have  more  than  enough  data  to 
tell  them  who  is  buying  their 
product,  as  well  as  how,  when 
and  where  the  buying  happens. 

DATA’S  NEW  VOICE. 

Today,  however,  customers 
expect  a  company  to  know  why 
they’re  buying.  Or  why  they 
aren’t.  Because  when  a  company 
knows  what  motivates  customers, 
it  can  serve  them  better. 


The  good  news  is  such  data 
exists,  just  not  in  the  columns, 
rows,  reports  and  purchase 
histories  we’re  used  to.  It’s  called 
big  data,  and  it  comes  from 
tweets,  videos,  clickstreams  and 
other  unstructured  sources. 
It’s  the  data  of  desire.  And 
today,  we  have  the  technology 
and  tools  to  make  sense  of  it. 


So  now,  instead  of  learning 
which  customers  it  has  lost, 
a  company  can  learn  which 
customers  it  might  lose  and 
present  timely  offers  or 
products  motivating  those 
customers  to  stay.  Using  IBM 
Smarter  Analytics  to  identify 
which  customers  were  most 
likely  to  switch  to  another 


“For  the  first  time, 
we  can  decide  which 
promotions  to  run 
based  on  facts  rather 
than  gut  feel.” 


Patrick  Neeley 

Chief  Business 
Officer,  Chickasaw 
Nation  Division 
of  Commerce 
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THE  POWER  OF  BIG  DATA, 


of  the  data  cuirently 
produced  is  unstructured 


MINING  MOTIVATION. 

Enter  Smarter  Analytics  from 


communications  carrier, 

XO  Communications  was  able 


5  like  images,  videos , 

IBM — software,  systems  and 

to  predict  likely  customer 

* 

)  tweets,  posts  and  e-mails. 

strategies  that  help  companies 

defections  within  90  days, 

combine  their  own  enterprise 
data  with  their  consumers’ 
unstructured  data  to  see  a  fuller 
picture.  A  big  data  platform, 
paired  with  predictive  and 
sentiment  analytics,  allows 
organizations  to  correlate, 
for  example,  sales  records 
with  social  media  mentions 
for  more  relevant  insights. 


reducing  churn  by  35  percent 
the  first  year. 

With  IBM  Smarter  Analytics,  . 

companies  are  gathering  big  LET’S  BUILD  A 
data  and  using  it  to  ask — and  SMARTER  PLANET 
answer — smarter  questions  about 
what  their  customers  really  want. 

ibm.com/usingbigdata  x  I  /  - -  ■  ■  - 


S:V.  v  •  IBM  logo,  taiu.'om,  Smarter  Planet  aid  tne  planet  con  are  trademarks  of  International  Business  Machines  Corp.  registered  in  many  junsdictions  worWwle  A  current  list  of  IBM  trademarks  is  available  on  the  Web  at  wAvibraoom/tegal/copytradeshtml 
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Storage  for 
j  the  Everyman 

26  IT  staffers  at  all  levels 

* 
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managing  data  storage. 
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EMILIANO  PONZI  ILLUSTRATION 


Boston  relies  on 
crowdsourcing  via  a 
smartphone  app  to 
monitor  the  condition 
of  road  surfaces. 


IT  CAREERS 


GOVERNMENT  IT 


Emerging  Tech  Keeps  Cities  Running 


IN  BOSTON,  residents  are  using  city- 
provided  apps  to  improve  municipal 
operations,  that  city’s  CIO,  Bill  Oates,  told 
attendees  of  a  recent  IBM  conference  in 
Las  Vegas.  And  one  of  the  city’s  newest  mobile 
apps,  Street  Bump,  piqued  the  interest  of  one 
of  Oates’  fellow  pubic  servants,  Gary  Gilot,  an 
engineer  who  heads  the  public  works  board  in 
South  Bend,  Ind. 

Street  Bump  uses  a  smartphone’s  acceler¬ 
ometer  to  record  road  conditions  and  then 
sends  the  data  to  the  city.  It  has  already  helped 
utilities  do  a  better  job  of  keeping  the  tops 
of  manhole  covers  even  with  the  surfaces  of 
roads,  Oates  said. 

The  app  is  part  of  Boston’s  Citizens  Connect 
system,  which  allows  residents  to  report 
problems  such  as  trash,  broken  streetlights  or 
graffiti  to  city  officials. 


Now  going  on  Version  4.0,  the  Citizens 
Connect  program  is  set  to  be  deployed  state¬ 
wide,  initially  in  more  than  50  communities. 

Gilot  said  he  was  impressed  by  Street 
Bump’s  use  of  crowdsourcing  as  a  way  to 
amass  data  about  road  conditions.  “I  love  the 
idea  of  the  future  —  that  you  can  avoid  the 
expense  by  crowdsourcing,”  he  said. 

South  Bend  has  taken  some  low-tech  ap¬ 
proaches  to  that  problem.  It  once  had  city 
supervisors  drive  every  street  in 
town  to  rate  road  conditions. 

However,  South  Bend  has  gone 
high  tech  in  other  areas.  The  city 
worked  with  IBM  to  create  a  wireless  sensor 
network  that  detects  changes  in  sewer  flow 
and  alerts  the  city  to  problems.  The  system  has 
reduced  overflows  and  backups,  Gilot  said. 

-  Patrick  Thibodeau 


COMPUTERWORLD.COM 


Computer  Science 
Enrollments  Rise 
29%  in  2011-12 

The  number  of  new  undergradu¬ 
ate  computer  science  majors  at 
Ph.D.-granting  U.S.  universities  rose 
by  more  than  29%  last  year,  an  in¬ 
crease  that  the  Computing  Research 
Association  called  “astonishing." 

It  was  the  fifth  straight  year  in 
which  the  number  of  students  en¬ 
rolled  in  computer-related  degree 
programs  increased,  according  to 
the  CRA’s  annual  Taulbee  Survey 
of  computer  science,  computer 
engineering  or  information  depart¬ 
ments  at  Ph.D.-granting  institutions. 

The  2011-12  academic  year  also 
marked  the  third  straight  year  in 
which  the  percentage  increase 
in  bachelor’s  degrees  awarded  in 
computer  science  hit  double  digits. 
In  U.S.  computer  science  depart¬ 
ments,  the  year-over-year  increases 
were  19.8%  overall  and  16.6% 
among  those  departments  that  par¬ 
ticipated  in  the  survey  this  year  and 
last  year,  according  to  the  CRA. 

Computer  science  enrollment 
trends  “are  somewhat  cyclical 
based  on  the  perceived  strength  of 
the  IT  sector,”  said  Peter  Harsha, 
the  CRA’s  director  of  government 
affairs. 

He  noted  that  CRA  members  have 
speculated  that 
the  recent  upward 
trend  is  due  in  part 
to  the  fact  that 

“students  are  much  more  aware  of 
the  importance  of  computational 
thinking  in  just  about  every  other 
field  of  science  and  technology." 

-  PATRICK  THIBODEAU 
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How  InterSystems  invented  a  database  system 
for  developers  who  question  relational  databases. 
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BETWEEN  THE  LINES 

By  John  Klossner 


DATA  CENTER 

eBay  Develops  Metric  for  Data  Centers 


THERE’S  A  MAXIM  in  the  datacenter 
business  that  holds  that  you  can’t 
manage  what  you  can’t  measure,  and 
eBay  has  come  up  with  a  new  metric 
designed  to  make  it  easier  to  measure  —  and 
therefore  manage  —  data  center  performance. 

The  online  auction  service  looks  at  the  cost 
of  IT  operations  in  dollars,  kilowatt  hours  and 
carbon  emissions,  and  then  ties  those  costs 
back  to  a  single  performance  metric  —  the 
number  of  transactions  its  customers  conduct 
on  its  website. 

The  result  is  a  “miles  per  gallon”  type  of 
metric  that  eBay  can  strive  to  improve  over 
time,  said  Dean  Nelson,  head  of  eBay’s  Global 
Foundation  Services  unit,  which  manages  the 
company’s  data  centers  worldwide. 

“EBay  is  a  single  system;  it’s  the  sum  of 
a  million  parts,  and  we  needed  a  way  to 
measure  and  convey  the  efficiency  of  this 
system,”  he  said  at  a  recent  conference  hosted 
by  the  Green  Grid  Forum. 

EBay  published  the  methodology  for 
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calculating  the  metric,  called  Digital  Service 
Efficiency,  in  hopes  that  other  companies 
will  adopt  it  —  much  as  the  industry  rallied 
around  Power  Usage  Effectiveness,  or  PUE,  as 
a  measure  of  data  center  efficiency. 

In  the  process  of  sharing  its  methodology, 
eBay  took  the  unusual  step  of  releasing  a 
wealth  of  information  about  its  data  center  op¬ 
erations.  For  example,  the  company  revealed 
that  it  had  52,075  physical  servers  at  the  end  of 
2012  and  generated  740  metric  tons  of  carbon 
per  million  users,  or  1.6  tons  per  server. 

EBay  set  a  target  of  reducing  its  cost  per 
transaction  and  carbon  emissions  per  transac¬ 
tion  by  10%  this  year,  and  it  wants  to  increase 
its  transactions  per  kilowatt  hour  by  the  same 
amount,  Nelson  said. 

It  may  not  be  easy  for  other  companies  to 
replicate  eBay’s  methodology  because  other 
organizations’  business  models  may  be  more 
complex  than  a  straightforward  count  of  the 
number  of  transactions  that  customers  make. 

-  James  Niccolai,  IDG  News  service 


Feedly,  a  free  Web-based 
RSS  service,  gained 

500,000 

new  users  in  the  48  hours 
after  Google  announced 
the  imminent  demise  of  its 
RSS  service,  Reader. 

SOURCE:  FEEDI  Y 


MOBILE  DEVICES 

Efficiency  on  the 
Rise  as  BY0D 
Expands  at  Intel 

Intel  says  its  rapidly  expanding 
bring-your-own-device  program 
has  been  a  resounding  success  that 
delivered  about  5  million  hours  of 
productivity  gains  last  year. 

In  the  company’s  annual  IT  report 
released  earlier  this  month,  CIO  Kim 
Stevenson  credited  the  BYOD  pro¬ 
gram  with  saving  each  employee 
about  57  minutes  per  workday. 

Over  the  past  year,  the  company 
has  expanded  the  number  of  de¬ 
vices  and  cloud  services  supported 
in  the  BYOD  program. 

According  to  the  report,  Intel 
was  supporting  more  than  23,500 
employee-owned  smartphones  and 
other  mobile  devices  through  its 
BYOD  program  by  the  end  of  last 
year,  an  increase  of  38%  from  2011. 
The  company  was  also  supporting 
41  mobile  applications  at  the  end  of 
last  year,  having  added  16  approved 
applications  to  the  BYOD  program. 

As  part  of  the  program,  Intel 
has  built  a  private  cloud  that  gives 
employees  access  to  company 
services  and  information  through 
their  personal  mobile  devices.  The 
cloud  model  allows  Intel  to  support 
a  range  of  devices,  with  access 
provided  based  on  a  device’s  loca¬ 
tion,  preferences  and  capabilities, 
Stevenson  said  in  the  report. 

-  AGAM  SHAH, 
IDG  NEWS  SERVICE 


BlackBerry®  Balance™ 

The  best  of  both  worlds  to  keep  your  business  moving 


BlackBerry®  Balance™  gives  employees  the  freedom  and  privacy  they  want 
while  delivering  a  Work  Space  that  is  fully  encrypted,  managed  and  secured, 
so  you  can  protect  critical  corporate  data  and  apps.  It's  the  perfect  work-life 
balance,  built  into  every  BlackBerry®  10  smartphone  and  managed  through 
BlackBerry®  Enterprise  Service  10. 


Get  the  full  story  and  a  free  60-day  BlackBerry  Enterprise  Service  10 
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Book  Stirs  Debate 
On  Women  in  IT 

Facebook’s  COO  helps  draw  attention  to  the 
continuing  decline  in  the  number  of  female  tech 
workers  in  the  U.S.  By  Patrick  Thibodeau 


FACEBOOK  COO  Sheryl  Sandberg’s  belief  that  the  women’s 
revolution  has  “stalled”  and  that  “men  still  run  the 
world”  may  have  merit,  at  least  in  IT. 

Women  today  are  clearly  rejecting  IT  as  a  career. 

In  the  early  1980s,  women  accounted  for  just  over 
37%  of  all  U.S.  college  students  earning  bachelor’s  degrees  in 
computer  science.  By  2010,  that  percentage  had  fallen  to  a  little 
more  than  17%,  according  to  latest  available  data  from  the  Na¬ 
tional  Science  Foundation. 

Sandberg  is  calling  on  women  to  be  more  assertive,  or  to  “lean 
in,”  as  she  writes  in  her  book,  Lean  In: 

Women,  Work,  and  the  Will  to  Lead.  The 
book  comes  out  at  a  time  when  women 
are  significantly  under-represented  in 
U.S.  data  centers. 

Last  year,  women  held  only  26%  of  the 
jobs  in  computer-related  occupations,  up 
from  25%  from  2011.  That  slight  uptick 
notwithstanding,  the  overall  number 
of  female  IT  professionals  has  declined 
steadily  since  2000,  when  women’s  share 


of  the  computer-related  jobs  pool  hit  a 
peak  of  nearly  30%,  according  to  the 
National  Center  for  Women  &  Infor¬ 
mation  Technology  (NCWIT). 

Tammi  Pirri,  vice  president  of 
human  resources  at  Black  Duck  Soft¬ 
ware,  an  open-source  software  services 
and  development  firm,  has  witnessed 
the  downward  trend  first  hand.  In  her 
eight  years  at  Black  Duck,  she  said, 
“we’ve  only  had  one  female  engineer¬ 
ing  intern  [but]  we’ve  had  10  male 
engineering  interns.” 

Sandberg’s  book  has  been  criticized 
for  its  focus  on  “changing  the  women 
rather  than  changing  the  system,”  said 
Jenny  Slade,  communications  direc¬ 
tor  at  NCWIT.  “But  frankly,  if  she’d 
written  a  polemic  on  institutional  bias 
in  the  workplace,  she’d  have  been  criti¬ 
cized  for  painting  women  as  victims.” 

Kim  Stevenson,  vice  president  and 
CIO  at  Intel,  one  of  24  female  CIOs  in 
Fortune  100  companies,  said  her  company’s  success 
in  increasing  the  number  of  female  employees  in 
mid-  to  senior-level  technical  jobs  since  2004  isn’t  a 
fluke.  Stevenson  noted  that  Intel  offers  mentoring 
programs  and  opportunities  for  network-building  for 
women  —  activities  that  Sandberg  champions.  The 
Women  at  Intel  Network  has  22  chapters. 

Stevenson  doesn’t  share  Sandberg’s  view  that 
progress  for  women  has  stalled,  though  she  agrees 
that  more  can  be  done. 

Kathy  Flarris,  managing  director  of  Harris  Allied, 
an  executive  recruiting  firm  specializing  in  technol¬ 
ogy,  suggested  that  women  in  IT  create  professional 
support  networks. 

“In  pure  technology  departments,  men  still  out¬ 
number  women  by  as  much  as  nine  to  one.  The  sole  woman  in  a 
predominantly  male  team  often  feels  a  sense  of  isolation,”  she  said. 

Karie  Willyerd,  vice  president  of  learning  and  social  adoption 
at  SAP,  said  that  unflattering  stereotypes,  like  the  depictions  of 
engineers  in  the  popular  comic  strip  Dilbert,  may  have  discour¬ 
aged  young  girls  from  thinking  about  IT  careers.  But  recent  moves 
by  building  block  maker  Lego  and  other  companies  to  create 
products  aimed  at  exposing  young  girls  to  engineering  could  begin 
to  change  the  cultural  message,  she  added. 

Paula  Hunter,  executive  director  of  the  nonprofit  Outercurve 

Foundation,  which  offers  a  forum  for 
open-source  and  commercial  soft¬ 
ware  developers  to  come  together, 
also  cited  some  advantages  that  can 
make  tech  work  attractive  to  more 
women.  Software  engineering,  she 
said,  “is  not  only  well  paid,  but  highly 
flexible,”  and  therefore,  she  added, 
it’s  a  good  profession  for  “women 
who  want  to  work  throughout  their 
children’s  formative  years.”  ♦ 


In  pure  technology 
departments,  men 

still  outnumber  women  by 

as  much  as  nine  to  one.” 

-  KATHY  HARRIS,  MANAGING  DIRECTOR. 
HARRIS  ALLIED 
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REUTERS/MIKE  SEGAR 


Twice  the  virtualization. 

Lower  management  costs. 

None  of  the  compromises. 

You’ve  been  looking  for  IT  solutions  that  meet  the  increasingly  sophisticated  demands 
on  your  infrastructure.  IBM  Flex  System,™  featuring  Intel®  Xeon®  processors,  provides 
simplicity,  flexibility  and  control  in  a  system  that  doesn’t  require  compromise. 

It  supports  up  to  twice  the  number  of  virtual  machines  as  the  previous  generation  of 
blade  servers.1  And  IBM  Flex  System  Manager™  can  help  reduce  management  costs 
by  providing  visibility  and  control  of  all  physical  and  virtual  assets  from  a  single  vantage 
point.2 

You  can  select  individual  elements  and  integrate  them  yourself  or  with  the  support 
of  an  IBM  Business  Partner.  Or  you  can  choose  an  IBM  PureFlex™  System  and 
leverage  IBM’s  expert  integration  for  an  even  simpler  experience.  Learn  more  at 
ibm.com/systems/no_compromise 


Learn  why  Clabby  Analytics  says  IBM  Flex  System  is  the  best  blade  offering  in  the 
market.  Download  the  paper  at  ibm.com/systems/no_compromise 


'  Based  on  IBM  testing  and  documented  in  IBM  System  x®  Virtualization  Server  Consolidation  sizing  methodology.  IBM  Flex  System  x240  supports  27X  more  Peak  Utilization  Virtual  Machines  (V Ms)  than 
previous  generation  BladeCenter®  HS22V 

2  Based  on  IDC  white  paper  "The  Economics  of  Virtualization:  Moving  Toward  an  Application-Based  Cost  Model,"  Michelle  Bailey,  November  2009,  http://www.vmware.com/files/pdf/Virtualization-application- 
based-cost-model-WP-EN.pdf 

Optional  IBM  Flex  System  storage  node  available  fourth  quarter  2012 

IBM,  the  IBM  logo,  System  x,  BladeCenter,  PureFlex,  IBM  Flex  System  Manager  and  IBM  Flex  System  are  trademarks  or  registered  trademarks  of  International  Business  Machines  Corporation,  registered  in  many 
jurisdictions  worldwide.  Other  product  and  service  names  might  be  trademarks  of  IBM  or  other  companies.  For  a  current  list  of  IBM  trademarks,  see  www.ibm.com/legal/copytrade.shtml.  Intel,  the  Intel  logo, 
Xeon,  and  Xeon  Inside  are  trademarks  or  registered  trademarks  of  Intel  Corporation  in  the  U.S.  and/or  other  countries.  ©International  Business  Machines  Corporation  2013.  All  rights  reserved. 


NEWS  ANALYSIS 


Cloud  Computing’s 
Big  Debt  to  NASA 

Large  enterprises  are  betting  big  on  the  OpenStack 
cloud  platform,  which  is  deeply  rooted  in  the  space 
agency’s  ingenuity.  By  Patrick  Thibodeau 


IBM’S  DECISION  to  base  its  cloud  services  on  OpenStack 
may  prove  to  be  a  key  to  establishing  the  fledgling  open- 
source  platform  as  the  enterprise  standard. 

The  announcement  earlier  this  month  follows  similar 
moves  by  rival  enterprise  IT  vendors  Hewlett-Packard,  Dell, 
Cisco,  Red  Hat  and  Rackspace,  whose  products  are  used  by  many 
Fortune  1000  companies. 

That  rapid  rise  of  the  three-year-old  technology  may  not  have 
happened  without  NASA  —  a  fact  that’s  worthy  of  note  at  a  time 
of  government  budget  cuts  and  retreats  on  government-funded 
tech  R&D  initiatives,  which  in  the  past  led 
to  the  development  of  the  Internet,  GPS, 
lasers  and  other  now  widely  used  systems. 

OpenStack’s  beginnings  can  be  traced 
to  a  NASA  project  called  Nebula,  which 
was  launched  in  2008  to  build  what 
eventually  became  what  NASA  called  an 
“open-source  compute  controller.” 

Nebula  researchers  released  the  project’s 
compute  engine  code  as  open  source  under 


an  Apache  2.0  license,  and 
the  code  was  used  by  Rack- 
space  in  its  development  of  a 
cloud-based  storage  product 
called  Swift. 

Rackspace 'and  NASA  then 
joined  forces  to  use  the  tech¬ 
nologies  to  create  OpenStack. 
The  first  OpenStack  code  was 
released  to  the  open-source 
community  in  2010. 

Chris  Kemp,  NASA’s  first 
CTO  for  IT  and  the  leader  of 
the  Nebula  project,  said  that 
while  a  product  similar  to 
OpenStack  would  likely  have 
emerged  without  NASA,  the 
agency’s  involvement  accel¬ 
erated  its  development  “and 
gave  it  a  lot  more  credibility 
—  quickly.” 

Rackspace  CTO  John 
Engates  agreed,  saying: 
“NASA  lent  a  lot  of  credibil¬ 
ity  when  it  came  to  this  being  a  truly  open  and  altruistic 
effort  rather  than  a  Rackspace-centric  effort  with  some 
ulterior  motive.  NASA  made  sure  it  was  for  everyone.” 

NASA  CIO  Linda  Cureton  is  emphatic  about  NASA’s 
role  in  the  development  of  the  technology.  “If  it  were 
not  for  NASA,  OpenStack  would  not  exist,”  she  said. 

NASA  raised  eyebrows  last  year  when  it  began  using 
an  Amazon.com  cloud  platform  that’s  widely  seen  as  a 
rival  to  OpenStack. 

“Sometimes  a  prophet  isn’t  appreciated  in  their  home¬ 
town,”  Cureton  said.  “But  I  predict  that  as  [OpenStack 
adoption]  increases  —  as  signaled  by  IBM’s  announce¬ 
ment  —  and  the  commercial  viability  continues  to  soar, 
NASA  will  be  a  consumer  of  the  very  capability  they 
helped  create.” 

“This  is  the  way  it  should  work.  Our  operating  costs  will 
be  reduced,  and  we  will  help  fuel  the  economic  engine  of  our 
country,”  she  added. 

At  its  Pulse  conference  in  Las  Vegas,  IBM  announced  that  all 
of  its  cloud  services  and  software  “will  be  based  on  an  open  cloud 
architecture.”  At  the  same  time,  it  also  unveiled  new  private 
cloud  offerings  based  on  OpenStack. 

Long  a  major  supporter  of  Linux,  IBM  is  also  expected  to  be  a 
major  contributor  to  the  OpenStack  code  base. 

OpenStack  clearly  has  momentum,  said  Charles  King, 

an  analyst  at  Pund-IT.  But,  he  added, 
the  fact  that  “pretty  formidable  cloud 
players”  like  Amazon,  Microsoft  and 
Oracle  aren’t  using  it  suggests  that  “the 
market  at  large  may  not  be  ready  for  a 
de  facto  standard.” 

The  technology’s  long-term  success 
“depends  on  how  competition  in  the 
cloud  market  shakes  out  over  the  next 
few  years,”  King  added.  ♦ 


If  it  were 
not  for  NASA, 

OpenStack  would 
not  exist.” 

-  LINDA  CURETON,  CIO,  NASA 
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NASA 


Download  our  FREE  Server  Room  Efficiency  kit 

and  enter  to  win  a  Google  Nexus  10  tablet! 


□  Yes!  Send  me  more  information  via  the  Uptime™  Email  newsletter. 

□  No,  I’m  not  interested  today,  but  please  add  me  to  your  mailing  list. 


Key  Code: 
y540v 


Visit  www.apc.com/promo 
or  call  888-289-APCC  x6518 
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Company: 
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Citv/Town: State: ZIP  Code: Country: 

Phone: Fax: 

Email: 


What  type  of  availability  solution  do  you  need? 

UPS:  80+  kVA  (three-phase  AC)  □  DC  Power 
Monitoring  and  Management  i  Cables/Wires 
!  1  Surge  Protection  □  UPS  Upgrade 


□  UPS:  0  -  1 6  kVA  (single-phase)  □  UPS:  10-80  kVA  (three-phase  AC) 

□  Networking  Enclosures  and  Racks  □  Air  Conditioning 

□  Line  Conditioning  □  Don't  know 

□  A V  Opportunities 


©2013  Schneider  Electric.  All  Rights  Reserved.  Schneider  Electric,  Uptime  and  APC  are  trademarks  owned  by  Schneider  Electric  Industries  SAS  or  its  affiliated 
companies.  All  other  trademarks  are  property  of  their  respective  owners,  www.schneider-electric.com  •  998-5866_GMA-US_B_Nexus 
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40  million  computer  users 
don't  trust  the  power  grid. 


But  they  do  trust  APC  by  Schneider  Electric  Smart-UPS. 


Today’s  more  sophisticated  server  and  networking  technologies  require  higher 
availability.  That  means  you  need  more  sophisticated  power  protection  to  keep 
your  business  up  and  running  at  all  times.  But  that’s  not  all.  In  today’s  economy, 
your  UPS  must  safeguard  both  your  uptime  and  your  bottom  line.  Only 
APC  by  Schneider  Electric"  helps  you  meet  both  of  these  pressing  needs. 
Specifically,  the  APC  by  Schneider  Electric  Smart-UPS"  family  now  boasts  models 
with  advanced  management  capabilities,  including  the  ability  to  manage  your 
energy  in  server  rooms,  retail  stores,  branch  offices,  network  closets,  and  other 
distributed  environments. 

Intelligent  UPS  management  software. 

PowerChute" Business  Edition,  which  comes  standard  with  Smart-UPS  5  kVA  and 
below,  enables  energy  usage  and  energy  cost  reporting  so  you  can  save  energy  and 
money  by  tracking  energy  usage  and  costs  over  time;  C02  emissions  monitoring  to 
reduce  environmental  impact  through  increased  understanding;  and  risk  assessment 
reporting  so  you  can  identify  and  proactively  manage  threats  to  availability  (e.g., 
aging  batteries). 

Best-in-class  UPS. 

Our  intelligent,  interactive,  energy-saving  APC  by  Schneider  Electric  Smart-UPS 
represents  the  combination  of  more  than  25  years  of  legendary  reliability  with  the 
latest  in  UPS  technology  including  an  easy-to-read,  interactive,  alphanumeric  LCD 
display  to  keep  you  informed  of  important  status,  configuration,  and  diagnostic 
information;  a  unique  battery  life  expectancy  predictor;  and  energy-saving  design 
features,  like  a  patent-pending  "green”  mode. 

Now,  more  than  ever,  every  cost  matters  and  performance  is  critical.  That’s  why 
you  should  insist  on  the  more  intelligent,  more  intuitive  APC  by  Schneider  Electric 
Smart-UPS. 


Why  Smart-UPS  is  a 

smarter  solution 


Intuitive  alphanumeric  display: 

Get  detailed  UPS  and  power 
quality  information  at  a  glance 
-  including  status,  about,  and 
diagnostic  log  menus  in  your 
choice  of  up  to  five  languages. 


Configurable  interface: 

Set  up  and  control  key  UPS 
parameters  and  functions  using 
the  intuitive  navigation  keys.  On 
rack/tower  convertible  models, 
the  display  rotates  90  degrees 
for  easy  viewing. 


Energy  savings: 

A  patent-pending  "green"  mode 
achieves  online  efficiencies  to  97 
percent  or  higher,  reducing  heat 
loss  and  utility  costs. 


Download  our  FREE  Server  Room  Efficiency  Kit 
and  enter  to  win  a  Google  Nexus  10  tablet! 

Visit  www.apc.com/promo  Key  Code  y540v  Call  888-289-2722  x6518 


by  Schneider  Electric 
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All  other  trademarks  are  property  of  their  respective  owners,  www.schneider-electric.com  •  998-1 1 77097_GMA-US_Nexus 


Emmile 

Brack 

Marge  analytics 
project  offers  insight 
into  students’ 
academic  progress. 


What’s  the  next  step  in  your 
career?  "I  definitely  want  to 
continue  working  in  education. 
That’s  where  I  want  to  be.  My  next 
step  is  probably  a  COO  role,  where 
I  can  have  a  broader  view  of  the 
organization.” 

What  accomplishment  are  you 
most  proud  of?  “I’m  most  proud 
of  the  fact  that  l  made  the  switch 
to  a  nonprofit  and,  specifically, 
education.  Being  brought  into  the 
mission  of  the  work  and  the  impact 
that  organizations  like  Aspire  have  - 
that’s  extremely  fulfilling.” 

What's  the  best  advice  you’ve  ever 

received?  “Be  your  own  advocate.” 


■  -=1 
:  ,v 1 

•  ..-I  ' 


EMMILE  BRACK  leads  the  IT  department  at  Aspire  Public  Schools,  a  nonprofit  orga¬ 
nization  that  manages  34  public  charter  schools  throughout  California.  The  system 
serves  12,000  mostly  low-income  students  in  kindergarten  through  12th  grade,  and 
its  goal  is  to  get  all  graduating  seniors  accepted  into  four-year  colleges.  Brack  is 
Aspires  vice  president  of  technology.  She  says  her  department’s  task  is  to  make  sure  Aspires 
1,500  employees  and  its  students  have  the  technology  needed  to  transform  the  students’ 
educational  experiences.  Brack  says  one  way  her  team  is  meeting  this  goal  is  by  deploying 
analytics  tools.  Here  she  talks  about  the  lessons  she  has  learned  from  that  project. 


Hobbies:  “l  love  board  games 
and  puzzles,  and  l  do  them 
whenever  l  can.” 


What  did  your  organization  want  to  achieve  with  the  analytics  deployment?  The 

main  reason  for  wanting  to  deploy  analytics  software  was  to  save  time  for  our  teachers, 
principals  and  other  teammates.  We  did  a  needs  assessment  and  gathered  that  quite  a 
bit  of  time  was  being  spent  by  teammates  crunching  numbers  or  gathering  data  to  see 
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OZs? 

commvault 


You'll  never  look  at  your 
protected  data 
the  same  way  again. 


Simpana®  10  software  is  more  than  just  an  upgrade  to  an  industry-leading 
solution  for  protecting,  managing,  and  accessing  corporate  information. 
It's  an  exponential  leap  forward. 

IT  Leaders  today  are  navigating  environments  of  widespread  change  to 
implement  solutions  that  meet  and  exceed  the  demands  brought  on  by 
massive  data  growth,  increased  mobility,  the  drive  to  cloud,  and  Big  Data. 
With  more  than  300  new  features,  we  designed  Simpana  10  with  these 
challenges,  and  our  customers,  in  mind. 


introducing 

S I M  PANA. 


Simpana  10  is  an  opportunity  to  not  only  protect  your  data,  but  to  transform 
your  business.  Enable  a  mobile  enterprise  and  dramatically  increase  productivity. 
Build  a  modern  IT  infrastructure  and  scale  to  new  heights.  Create  a  safe, 
efficient,  intelligent  and  accessible  virtual  repository  of  all  protected  corporate 
data  and  make  better,  faster  business  decisions. 

The  name  Simpana  has  become  synonymous  with  holistic  data  protection  and 
recovery.  And  now  more  than  ever,  it  stands  for  a  core  platform  that  will  allow 
your  business,  technology,  and  people  to  work  more  smoothly  and  effectively. 
Isn't  it  time  your  organization  made  the  leap? 


an  exponential  leap  forward 


Visit  www.commvault.com/Simpana10. 


backup  &  recovery  >  replication  >  analytics  >  archive  >  search  &  ediscovery 


www.commvault.com  ■  2  Crescent  Place  ■  Oceanport,  NJ  07757 
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THE  GRILL 


EMMILE  BRACK 


A  lot  of  my 
team  is 
really  excited 
about  new 
technology,  but  if  it’s  not 
grounded  in  work  that 
needs  to  get  done, 
it  doesn’t  really  matter. 


Did  the  deployment 
achieve  your  goals? 

We’ve  accomplished 
a  lot  with  Tableau 
[analytics  software], 
but  there  are  areas 
where  we  want  to  use 
Tableau  more  in  order 
to  achieve  that  big  goal 
around  saving  team¬ 
mates  time.  We’ve 
rolled  out  reports  and 
dashboards  that  have 
greatly  improved  effi¬ 
ciency  around  analysis 
and  allowed  our  teach¬ 
ers  and  principals  to 
spend  more  time  on 
the  insight  and  plan¬ 
ning  pieces.  But  there’s 
still  room  and  work 
for  us  to  do  around 
achieving  that  big  goal. 


What  has  been  the 
biggest  benefit  with 
this  analytics  deploy¬ 
ment?  The  ability  to 
display  and  show  lon¬ 
gitude  data  on  a  specific  student  or  on  a  specific  school’s 
performance.  We  take  what  we  call  the  CSTs  —  the 
standardized  tests  that  all  students  have  to  take  —  and 
we’ve  been  able  to  use  Tableau  to  visualize  trends  and 
the  performance  of  individual  students  and  teachers, 
and  schools  as  a  whole  and  as  an  organization  year  over 
year.  It’s  improving  the  ability  for  our  teachers  and  prin¬ 
cipals  to  be  more  effective  in  their  work.  We  could  have 
done  it  without  Tableau,  but  for  a  teacher  or  principal  to 
do  that,  it  would  have  been  an  enormous  task. 


how  students  were 
performing.  That 
was  extremely  time- 
consuming  and  did 
not  leave  a  lot  of  time 
to  gather  insights  from 
that  data  analysis  or 
to  develop  a  plan  of 
action  to  fix  the  issues. 


What  is  the  end  result  of  this  insight?  That  a  piece  of 
data  doesn’t  provide  answers,  but  it  prompts  a  teacher 
to  ask:  Why? 

What  did  you  have  to  do  to  prepare  technically  for 
this  deployment?  We  built  out  a  data  warehouse  that 
served  as  a  central  repository  for  all  of  our  organi¬ 
zational  data,  student  achievement  data,  financial 
data,  survey  data.  We  built  that  infrastructure  and 


we  wanted  to  ensure  that  many,  if  not  all,  of  our 
core  operational  systems  were  integrated.  Unlike 
corporations  that  have  the  option  of  [using  multiple] 
ERP  systems,  education  technology  doesn’t  have  that 
type  of  system,  so  not  all  things  are  integrated  like  in 
an  ERP.  In  education  technology,  there  are  software 
and  tools  that  do  one  specific  thing,  so  you  have  to 
piece  your  systems  together  and  work  to  integrate 
them.  The  integration  of  our  operational  systems  and 
the  building  out  of  our  data  warehouse  happened 
over  two  years,  and  we  continue  to  build  it  out  and 
integrate  systems  as  we  add  them. 

What  was  the  biggest  mistake  you  made  with  this 
project?  When  we  implemented  the  data  warehouse 
and  Tableau,  the  large  appetite  for  data  analysis 
increased  even  more.  It  seemed  like  the  appetite  was 
insatiable.  And  we  were  uber-responsive.  So  there 
were  hundreds  of  reports  built  out,  but  there’s  not  a 
lot  of  structure  around  how  they’re  organized.  Simple 
things  like  [how  to]  make  sure  they’re  named  cor¬ 
rectly,  what  are  the  right  folders  they  should  be  in,  se¬ 
curity  issues  around  who  should  have  access  to  what 

—  that  knowledge  management  we  didn’t  necessarily 
think  about  ahead  of  time.  It’s  sort  of  biting  us  now  in 
that  there  are  literally  hundreds  of  reports  out  there, 
and  we’re  trying  to  figure  out  which  ones  are  most 
useful  and  which  ones  we  can  archive  or  delete. 

You  have  a  background  in  the  financial  and  opera¬ 
tions  side  of  the  house.  What  was  the  biggest  benefit 
of  having  experience  in  those  areas  as  you  switched 
to  leading  IT?  It  helps  me  understand  that  IT  should 
be  grounded  in  a  particular  process  and  should 
support  that  process  and  not  hinder  it.  As  technol¬ 
ogy  people,  a  lot  of  my  team  is  really  excited  about 
new  technology,  but  if  it’s  not  grounded  in  work  that 
needs  to  get  done,  it  doesn’t  really  matter. 

What  was  the  biggest  liability  of  that  background? 

Because  I’m  not  a  highly  technical  person,  there 
was  a  learning  curve  [in,  for  example,  understand¬ 
ing  things]  as  simple  as  our  network  infrastructure. 

I  had  a  little  bit  of  a  blind  spot  to  very  foundational 
technology  that’s  necessary  to  support  things  like  the 
data  warehouse  and  analytics.  So  that  learning  curve 
has  been  a  little  bit  steep  for  me.  But  I  ask  good  ques¬ 
tions,  and  I’m  getting  up  to  speed. 

What  would  you  do  again  when  taking  on  a  new  role? 

[Recognizing  that]  it’s  all  about  the  team.  All  the  suc¬ 
cesses  we  experience  will  be  as  a  team.  Knowing  who 
I  have  on  the  team,  knowing  their  perspectives,  their 
work,  what  makes  them  excited  about  coming  to 
work,  I’d  do  that  again.  It  helps  build  trust  and  gives 
insight  into  what  our  issues  are. 

—  Interview  by  Computerworld  contributing  writer 
Mary  K.  Pratt  (marykpratt@verizon.net) 
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VMware  virtualization 


has  saved  businesses 


billions  of  dollars. 


Here’s  how  we’re 


going  to  save  them 


billions  more. 


The 

Software-Defined 
Data  Center. 


VMware  pioneered  cloud  computing  by 
virtualizing  servers.  Now,  we  can  virtualize 
:a  centers.  So  servers,  storage, 
networking  and  security  can  deliver  even 
greater  levels  of  automation,  efficiency  and 
agility.  VMware  vCloud®  Suite  5.1  delivers 
the  software-defined  data  center,  now.  It’s 
the  data  center  for  the  new  cloud  era. 


vmware 


® 


Visit  vmware.com/sddc 


You  Want  Me  in  the  Office? 
How  20th  Century  of  You. 


Every  day  I 
work  with 
colleagues 
scattered 
around  the 
world. 


Steven  J.  Vaughan- 
Nichols  has  been 
writing  about 
technology  and  the 
business  of  technology 
since  CP/M -80  was 
cutting-edge  and 
300bps  was  a  fast 
Internet  connection  - 
and  we  liked  it! 
He  can  be  reached  at 
sjvn@vnal.com. 


N  AN  AVERAGE  WEEK,  I  work  about  55  hours.  You  probably  won’t  be 
surprised  to  learn  that  I  work  from  home.  I  say  that  because,  in  my 
experience,  people  who  work  from  home  tend  to  work  harder. 

One  person  whom  that  tidbit  about  my  workweek  might  surprise  is 


Yahoo  CEO  Marissa  Mayer.  Or  maybe  she  would 
just  think  I’m  lying.  Mayer,  quite  famously,  has 
told  all  of  her  company’s  telecommuters  to  spend 
time  and  gas  money  traveling  to  and  from  the 
office.  It’s  part  of  her  plan  to  turn  the  struggling 
Internet  company  around.  Seriously.  And  she’s 
not  alone.  Best  Buy  is  doing  likewise. 

Fools. 

Please  don’t  think  that  this  column  is  a  self- 
interested  rant,  motivated  by  a  fear  that  the 
anti-telecommuting  mentality  will  spread  until  I 
too  am  back  in  a  cubicle.  I’m  a  freelancer;  there’s 
no  office  for  me  to  return  to.  No,  the  fact  is  that  I 
know  that  telecommuting  has  many  advantages, 
for  both  employers  and  employees,  and  I  believe 
it  would  be  a  mistake  to  regress. 

The  thing  about  judging  a  telecommuting 
program  is  that  you  have  to  decide  what  you 
want  from  your  employees.  It’s  been  reported 
that  Mayer  looked  at  Yahoo’s  VPN  logs  and 
determined  that  too  many  telecommuters 
were  spending  too  little  time  on  the  company 
network.  More  soundly,  Best  Buy  had  relied  on 
a  policy  called  Results-Only  Work  Environment 
(ROWE),  which  looks  not  at  hours  on  the  job  but 
at  performance. 

ROWE’s  creators,  consultants  Cali  Ressler  and 
Jody  Thompson,  quickly  got  in  on  this  debate, 
sending  an  open  letter  to  Mayer.  In  the  1950s, 
they  wrote,  “collaboration  required  physical 
presence  and  lots  of  paper,”  but  today,  “we  have 
numerous  tools  that  allow  us  to  work  from  liter¬ 
ally  anywhere  on  the  planet.” 

Mayer  argues  that  collaboration  suffers  when 
colleagues  aren’t  constantly  bumping  against 


each  other  in  hallways  and  the  cafeteria.  Well, 
every  day  I  work  with  colleagues  scattered 
around  the  world.  We  are  bound  together  by 
email,  instant  messaging  and  that  quaint  19th 
century  invention  called  the  telephone.  I’ve 
collaborated  on  books  with  people  who  lived 
thousands  of  miles  away.  This  very  column  is 
being  written  in  Asheville,  N.C.,  and  it  will  be 
edited  in  Puerto  Rico,  copy-edited  and  formatted 
for  the  page  in  Massachusetts,  and  printed  in 
Illinois.  As  to  the  argument  that  there’s  no  real 
trust  without  face  time:  In  one  case,  I  wrote  a 
book  with  a  friend  of  over  20  years  who  I’ve  yet 
to  meet  in  the  “real”  world. 

Sure,  not  every  job  is  suitable  for  telecommut¬ 
ing.  But  for  those  that  are,  there  are  multiple 
benefits.  As  David  Gewirtz,  author  of  How 
to  Save  Jobs,  has  noted,  Americans  spend  an 
average  of  52  minutes  a  day  commuting.  That 
comes  to  about  225  hours  a  year.  Most  telecom¬ 
muters  that  I  know  end  up  giving  that  extra 
time  to  their  employers.  They  sit  down  at  their 
workstation  earlier  and  get  up  from  it  later.  They 
aren’t  watching  the  clock  but  instead  working  on 
and  completing  tasks. 

And  what’s  the  price  of  all  that  extra  face  time? 
Will  companies  have  to  buy  or  rent  more  space  to 
accommodate  the  workers  they  call  back  into  the 
office?  Are  they  ready  to  pay  for  the  power  those 
extra  bodies  will  use?  Are  they  going  to  need  more 
printers,  parking  spaces  and  support  staffers?  Put 
it  all  together  and  you  get  people  spending  less 
time  on  work  while  companies  spend  more  money 
on  office  infrastructure.  When  you  put  it  that  way, 
Mayer’s  big  idea  just  doesn’t  make  any  sense.  ♦ 
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Industry-Leading 
Database  Performance 


Business 
Operations 
Per  Second: 
Unparalleled 
Cisco  Server 
Performance. 


Unparalleled  Application  Performance 
with  Cisco  Servers. 
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For  more  performance  information,  visit  cisco.com/go/ucsbenchmarks. 

1.  Based  on  SPECfob2005  benchmark  on  Cisco  UCS  C220  M3  server  at  1.534.567  BOPS.  792,284  90PS/JVM.  2.  Based  on  TPC  Benchmark  C  Results  on  2  Processor  Systems.  Cisco  UCS  C240  M3  High-Density  Rack  Server  with  Oracle  Database  1 1g 
Release  2  Standard  Edition  One,  1,609, 186.39  tpmC.  $0.47/tpmC,  available  9/27/12  compared  to  IBM  Power  780  Server  Model  9179-MHB  with  IBM  DB2  9.5,  1,200.01 1.00  tpmC,  $0.69/tpmC,  available  10/13/10.  3.  Based  on  SPECjEnterprise2010 
benchmark  with  8  total  Java  EE  Server  processors  on  Cisco  UCS  B440  M2  servers  at  26, 1 18.67  EjOPS  compared  to  RISC- based  IBM  Power  780  at  16.646.34  EjOPS.  SPEC*.  SPEC  fob®,  and  SPECjEnterprise •  are  registered  trademarks  of  Standard 
Performance  Evaluation  Corporation.  TPC  Benchmark  C*  is  a  trademark  of  the  Transaction  Performance  Processing  Council  (TPC).  The  performance  results  described  here  are  derived  from  detailed  benchmark  results  available  at  http://www.spec  org 
and  http://www.tpc.org  as  of  1-15-2013.  ©2013  Cisco  and/or  its  affiliates.  All  rights  reserved.  All  third-party  products  belong  to  the  companies  that  own  them.  Cisco,  the  Cisco  logo,  and  Cisco  UCS  are  trademarks  or  registered  trademarks  of  Cisco. 
Intel,  the  Intel  logo.  Xeon  and  Xeon  Inside  are  trademarks  or  registered  trademarks  of  Intel  Corporation  in  the  U.S.  and/or  other  countries.  All  other  trademarks  are  the  property  of  their  respective  owners. 
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OUGLAS  SOLTESZ,  vice  president  and  CIO  at 
Budd  Van  Lines,  is  facing  a  common  problem 
A  seemingly  endless  flood  of  data. 

I  “If  you  gave  me  an  infinite  amount  of 
|  storage,  I  could  fill  it,”  he  says.  The  most 
|  recent  four  months  of  high-definition  surveil- 
i;  lance  video  from  the  company’s  offices  and 
5  warehouses  now  consumes  6oTB  on  his 
NexentaStor  NAS  and  SAN  platforms.  That 
video  is  one  reason  his  storage  needs  are 
growing  50%  to  80%  per  year. 


As  enterprise  storage 
demands  escalate,  disk 
densities  continue  to  rise. 

But  the  real  magic  is  in  software, 
where  speed  and  size  come 
together.  By  Robert  L.  Scheier 
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SPOTLIGHT 


STORAGE 


If  he  had  twice  as  much  capacity,  he  says,  his  users 
would  just  ask  to  keep  their  video  twice  as  long. 

With  existing  hard  drive  technologies  ending  their  de¬ 
cade-long  run  of  ever-increasing  densities,  IT  shops  are 
waiting  for  new  technologies  such  as  shingled  magnetic 
recording  (SMR)  and  phase-change  memory  (PCM) 
to  boost  storage  densities.  In  the  meantime,  they  are 
holding  down  costs  —  and  boosting  data  access  —  with 
software  that  virtualizes,  deduplicates  and  caches  data 
on  commodity  disk  drives,  solid-state  drives  (SSD)  and 
server-side  flash  memory. 

Disk  Density  Gets  Higher  Still 

After  about  10  years  of  steadily  increasing  densities, 
disks  that  use  perpendicular  magnetic  recording 
(PMR)  are  topping  out  at  about  lTB  per  square  inch, 
says  Mark  Re,  a  senior  vice  president  at  storage  vendor 
Seagate  Technology. 

In  the  second  half  of  this  year,  Seagate  will  begin 
shipping  drives  that  use  SMR  to  squeeze  more  data 
onto  disks  by  overlapping  the  data  tracks  on  them  like 
shingles  on  a  roof,  says  Fang  Zhang,  a  storage  analyst  at 
IHS  iSuppli.  That  should  eventually  boost  drive  densi¬ 
ties  to  1.3T  to  1.4T  bits  per  square  inch,  says  Re,  who 
adds  that  Seagate’s  SRM  drives  will  start  with  desktop 
form  factors  and  spread  to  other  platforms  such  as 
storage  arrays  next  year. 


me  an  infinite  amount 
I  could  fill  it. 


r  VP  AND  CIO,  BUDD  VAN  LINES 


The  next  advance,  which  will  take  disk  drives  to 
5Tbits  per  square  inch,  is  heat-assisted  magnetic 
recording  (HAMR),  which  uses  a  small  laser  to  change 
the  magnetic  properties  of  the  disk,  says  Re.  Seagate’s 
first  HAMR  drives  are  expected  in  2015  or  2016. 

In  the  fourth  quarter  of  this  year,  Seagate  rival 
Western  Digital  is  expected  to  release  disk  drives  filled 
with  helium,  which  provides  less  resistance  than  air 
and  thus  allows  the  addition  of  another  storage  platter 
or  two  to  a  drive.  Those  extra  platters  could  lift  the 
maximum  capacity  of  PMR  drives  from  today’s  4TB  to 
5TB  or  6TB,  says  Zhang.  Western  Digital  says  it  also 
plans  to  release  SMR  and  HAMR  drives  within  about 
two  years,  and  by  the  end  of  the  decade  it  hopes  to 
double  hard  drive  density  through  the  use  of  self¬ 
assembling  molecules  and  nanoimprinting. 

On  the  flash  memory  front,  vendors  are  working  to 
increase  not  only  the  density,  but  also  the  useful  capac¬ 
ity  and  life  span  of  flash  memory  used  in  server-based 
flash  storage  and  SSDs. 

The  NAND  flash  on  which  most  flash  and  SSD 
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drives  are  based  will  begin  to  be  replaced  by  a  new 
form  of  nonvolatile  memory  called  phase-change 
memory  by  around  2016,  says  Milan  Shetti,  CTO  at 
HP  Storage.  Unlike  magnetic  recording  that  records 
data  by  changing  the  magnetic  orientation  of  a  physi¬ 
cal  piece  of  memory,  PCM  applies  heat  to  change  the 
electrical  conductivity  of  the  media.  PCM  drives  are  not 
only  faster  than  NAND  flash,  but  their  memory  cells 
can  also  withstand  two  to  three  times  the  number  of 
jread/write  cycles  as  NAND  flash,  says  Haris  Pozidis, 
manager  of  memory  and  probe  technologies  at  IBM’s 
Zurich  research  lab.  That’s  important  for  applications 
such  as  caching  where  data  is  constantly  being  read  and 
written. 

Shetti  predicts  initial  drive  capacities  of  about  200 
to  250GB,  with  drive  sizes  at  least  doubling  by  2018. 

He  stresses  that  this  will  all  be  usable  capacity,  which 
is  not  the  case  in  current  SSDs,  where  15%  to  20% 
of  raw  capacity  is  set  aside  to  replace  cells  that  may 
wear  out.  Shetti  says  he  expects  prices  per  gigabyte  to 
be  comparable  to  those  of  current  flash  drives.  That 
equates  to  a  15%  to  20%  price  cut,  since  all  of  the  raw 
capacity  will  actually  be  usable. 

Dedupe:  A  Must-Have  Feature 

Over  the  past  10  years,  deduplication  —  the  process  of 
eliminating  duplicate  copies  of  data  —  has  moved  from 
game-changing  novelty  to  must-have  feature. 

Observers  say  not  to  expect  any  breakthrough 
increases  in  the  amounts  of  data  that  deduplication 
can  remove  from  hard  drives.  Currently,  deduplication 
typically  reduces  data  by  a  factor  of  seven  to  10.  Future 
improvements  will  come  from  increases  in  the  speed 
at  which  data  is  deduplicated  and  from  the  use  of  stan¬ 
dard  deduplication  systems  across  an  enterprise. 

Speeds  will  improve  as  a  result  of  deduplication 
being  performed  in  hardware  rather  than  software, 
and  in  nonvolatile  memory  such  as  PCM,  which  is 
faster  than  today’s  NAND  flash,  observers  say.  Predict¬ 
ing  that  “every  [nonvolatile  memory]  controller  is  going 
to  have  [deduplication]  built  in,”  Shetti  also  points  out 
that,  unlike  disk  drives,  deduplication  doesn’t  cause 
defragmentation  on  nonvolatile  memory  drives. 

In-line  deduplication,  in  which  data  is  deduped  before  it 
is  ever  stored,  reduces  storage  requirements  from  primary 
storage  to  backup  and  replicated  copies.  Pure  Storage  says 
its  in-line  data  deduplication  allows  its  flash  arrays  to  store 
five  or  10  times  as  much  data  as  their  designated  size. 

Observers  also  expect  to  see  deduplication  spread 
from  its  traditional  use  in  backup  to  other  applications 
and  to  more  computing  and  storage  devices.  Dell  says 
it  plans  to  incorporate  the  deduplication  technol- 
ogy  it  gained  through  its  purchase  of  Ocarina  into  its 
EqualLogic  and  Compellant  product  lines,  “first  with 
compression  primarily  for  . . .  data  like  snapshots,”  and 
later  for  more  frequently  accessed  data  and  files,  says 
Travis  Vigil,  executive  director  for  product  marketing 
at  Dell  Storage. 

Sean  Kinney,  director  of  product  marketing  at  HP 
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Ensuring  an  always-on  data  center  has  the 

highest  operational  efficiency 

PETER  PANFIL  " 

Why  the  power  to  save  energy  goes  beyond  eco-mode 

In  today's  always-on,  always  efficient  data  center  environments,  it's  easy  to 
get  caught  up  in  the  numbers,  especially  when  it  comes  to  UPS  performance. 


Availability  is  the  highest  priority 

of  any  data  center,  and  the  UPS 
system  is  the  keystone  that  ensures 
the  data  center  is  always  powered. 
At  the  same  time,  cost  savings  and 
energy  efficiency  are  common  business 
priorities.  When  planning  for  a  UPS,  it  pays  to 
consider  multiple  efficiency  strategies  that  will 
effectively  support  availability  requirements. 

Avoid  the  Ratings  Game 

Thanks  to  advances  in  UPS  technology,  the 
potential  to  cut  energy  costs  by  tens  of 
thousands  of  dollars  annually  has  never  been 
greater.  But  don’t  be  swayed  by  a  1  or  2% 
efficiency  difference  unless  availability  for  the 
data  center  is  the  same  for  each  UPS  option. 

Higher  Voltage  =  Bigger  Savings 

It  might  sound  strange  to  think  that  increasing 
your  system  level  voltage  can  actually  save 
money,  but  it  can  —  and  a  lot  of  it.  575/600VAC 
from  the  source,  through  the  UPS  and 
distribution,  uses  more  of  the  available  capacity 
of  gear,  breakers  and  wiring.  Adding  a  PDU 
that  compartmentalizes  faults  and  runs  the  IT 
equipment  at  its  highest  efficiency  point  delivers 
the  most  bang  for  the  buck. 

Think  Eco-lntelligent 

Eco-mode  has  done  wonders  for  improving  UPS 
efficiency,  but  it  comes  with  a  cost:  some  methods 
of  switching  to  eco-mode  and  back  again  may 
leave  availability  vulnerable.  Ask  the  UPS  supplier 
to  explain  how  the  equipment  safely  switches  to 
and  from  eco-mode,  and  ask  to  see  the  waveform 
at  the  point  of  transfer  to  ensure  that  the  power  is 
free  of  disruptive  notches. 
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The  from  Emerson 

Network  Power  is  the  most  efficient 
and  reliable  high-power  UPS  system 
available,  due  to  input  and  output 
isolation,  superior  fault  management 
and  efficiency  improvement  features 
like  Intelligent  Eco-mode™  with 
active  inverter  technology. 


When  transferring  to  eco-mode, 
make  sure  the  UPS  provides  a 
continuous,  uninterrupted  waveform 
-  interrupted  transfer  notches  are 
potentially  disruptive  to  operation. 


Total  Data  Center 
Energy  Consumption 


About  the  Author:  Peter  Panfil  is 
Vice  President  ofLiebertAC  Power, 
Emerson  Network  Power 


By  the  Numbers* 


Energy  use  of  infrastructure 
48%  equipment— cooling,  UPS, 

PDU  and  lighting 

Growth  rate  of  electricity 
56%  consumption  globally  between 
2005  and  2010 


$6K 


Estimated  cost  to  operate  a  server 
annually  in  a  typical  data  center 


Estimated  savings  achieved  by 
deploying  a  UPS  with  higher 
voltage  and  Intelligent  Eco-mode 


*  Citations  from  Energy  Logic  2.0;  Growth  in  Data  Center 
Electricity  Use  2005  to  201 0;  and  VMware  TCO  Calculator 
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how  you  can  save  thousands  each  year  in  reduced  power 
consumption.  Co  to  EmersonNetworkPower.com/KnowUPS  to 

access  our  resource  center  and  checklist  :• 


Emerson,  Emerson  Network  Power,  and  the  Emerson  Network  Power  logo  are  trademarks  and  service  marks  of  Emerson  Electric  Co.  All  other  brand 
names,  product  names,  and  logos  are  the  property  of  their  respective  owner.  ©  201 3  Liebert  Corporation. 
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VEN  AS  RESEARCHERS  FIDDLE  with  material  science  and  soft¬ 
ware  developers  fine-tune  clustered  file  systems,  two  old  stand¬ 
bys  -  slow,  cheap,  spinning  disk  and  even  older  tape  drives  - 
are  playing  a  crucial  role  in  managing  the  storage  flood. 

For  customers  using  CleverSafe  storage  appliances,  for  ex¬ 
ample,  “5,400  rpm  and  7,200  rpm  drives  are  the  way  to  go”  to 
achieve  the  lowest  cost  per  gigabyte  in  dollars,  power,  cooling  and 
space,  says  Chris  Gladwin,  Cleversafe’s  president  and  CEO.  And  Seagate 
senior  vice  president  Mark  Re  points  out  that,  not  only  would  it  be  costly 
to  replace  every  hard  drive  with  flash,  but  it  would  also  be  impossible  to 
manufacture  that  much  flash. 

Tape  is  even  slower  and  less  expensive  than  disk,  and  it’s  often  derided 
as  clumsy,  hard  to  use  and  prone  to  failure.  Nonetheless,  “tape  enjoys  a 
significant  space  efficiency  advantage  over  disk  storage  by  virtue  of  its 
ability  to  pack  more  recording  surface  area  into  a  given  physical  volume,” 
according  to  a  blog  post  by  Eric  Slack,  an  analyst  for  Storage  Switzerland, 
an  IT  analyst  firm  based  in  Fort  Worth,  Texas. 

According  to  an  April  2012  presentation  by  IBM  Systems  Technology 
Group,  while  NAND  flash  and  hard  disk  drive  densities  will  grow  20%  to 
30%  by  2014,  tape  densities  could  grow  by  40%  to  80%. 

Therefore,  Slack  argues  that  tape  will  continue  to  be  a  good  option  for  han¬ 
dling  big  data,  which  will  consist  of  “file-based  reference  data  that’s  stored  for 
long  periods  but  must  still  be  available  in  a  relatively  short  time  frame.” 

-  ROBERT  L.  SCHEIER 


Storage,  predicted  the  rise  of  unified  deduplication 
platforms  that  organizations  can  use  for  all  of  their 
applications  and  storage.  That,  he  says,  will  reduce 
licensing,  training  and  management  costs  as  well  as 
the  amount  of  storage  an  organization  must  buy. 

Performance  Meets  Speed 

Some  users  aren’t  upgrading  their  storage  systems  solely 
because  they  need  help  managing  large  volumes  of  data; 
they’re  also  driven  by  the  need  to  access  data  quickly. 

Case  Western  Reserve  University  is  moving  100TB 
of  research  file  data  from  an  EMC  Celerra  NS480  to  a 
Panasas  ActiveStor  8  for  rapid  analysis,  and  another  65TB 
of  structured  administrative  data  to  a  Nexsan  NST  5310. 
Besides  higher  performance,  users  wanted  to  create  single 
name  spaces  as  big  as  600TB  —  far  above  the  64TB  limit 
of  both  EMC  and  NetApp  offerings,  says  Brian  Christian, 
design  senior  technical  lead  at  the  school. 

“Our  first,  small,  high-performance  cluster”  used  a 
traditional  NAS  device  acting  as  Network  File  Server, 
“and  we  overloaded  it.  After  talking  with  our  peers,  we 
saw  that  to  grow  as  we  needed,  we  needed  a  parallel 
NAS.  That’s  when  we  acquired  Panasas,”  says  Christian. 

To  boost  performance,  many  customers  are  using 
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flash  memory  within  servers,  as  well  as  solid-state 
drives  in  storage  arrays,  to  cache  speed-sensitive  data 
before  writing  it  to  slower,  but  less  expensive  and 
higher-capacity  hard  drives. 

Three  years  ago,  slowing  application  performance 
and  increasing  upgrade  costs  spurred  David  Abbott, 
manager  of  IT  infrastructure  engineering  at  TripPak 
Services  and  ACS  Advertising,  both  Xerox  companies, 
to  look  for  new  platforms  that  could  handle  his  expect¬ 
ed  10TB  of  new  storage  per  year  “without  management 
having  a  heart  attack”  over  cost. 

The  software-as-a-service  provider  for  the  transporta¬ 
tion  industry  is  now  using  three  network-attached  storage 
(NAS)  units  from  Starboard  Storage  Systems  for  storing 
80TB  of  image  files  and  45TB  of  performance-sensitive 
data  for  500  virtual  machine  images  and  more  than  200 
virtual  desktops  on  a  Pure  Storage  flash  array. 

Before  moving  to  the  Nexanta  NAS/SAN  platform, 
Budd  Van  Lines  had  relied  on  a  Compellent  SAN. 

While  it  wasn’t  full,  “it  was  running  out  of  IOPS”  to 
handle  a  growing  number  of  queries  among  applica¬ 
tions  for  work  such  as  month-end  accounting,  he  says. 
To  provide  that  performance,  the  NexantaStor  plat¬ 
form  caches  data  in  solid-state  drives  for  faster  access, 
before  writing  that  data  to  7,200  rpm  serial  attached 
SCSI  (SAS)  drives  for  long-term  storage. 

NAS  vendor  NetApp  also  entered  the  flash  array 
market  with  its  EF540,  the  first  in  a  line  of  arrays  it 
says  will  combine  consistent,  low-latency  performance, 
high-availability  and  integrated  data  protection  with 
enterprise  storage  efficiency  features  such  as  in-line 
deduplication  and  compression. 

Software  Plus  Commodity  Disk 

Online  marketing  SaaS  provider  Constant  Contact  is 
among  those  turning  away  from  proprietary  hardware 
and  software  to  commodity  disk  managed  by  software. 

“When  I  joined  three  and  half  years  ago,  our  primary 
way  of  scaling  was  to  buy  more  storage,  faster  storage, 
and  bigger  and  faster  database  servers,”  says  CTO  Stefan 
Piesche.  To  reduce  costs  even  while  his  storage  needs 
grow  15%  to  25%  per  year,  he  is  switching  from  IBM’s 
DB2  database  running  on  3Par  SANs  to  the  open-source 
MySQL  and  Cassandra  NoSQL  databases  running  on 
Dell  servers,  commodity  disk  and  Fusion-io  flash  cards. 

This  new  platform,  he  says,  is  not  only  an  “order  of 
magnitude  faster”  than  its  older  storage  but  delivers 
high  performance,  availability  and  disaster  recovery 
without  the  need  for  extensive  management.  The  per¬ 
formance  gain  achieved  by  writing  data  to  six  storage 
nodes  without  transferring  it  over  the  network  means 
storing  multiple  copies  of  the  same  data.  However,  says 
Piesche,  the  low  price  of  commodity  disk  and  servers 
make  the  trade-off  worthwhile. 

He  also  notes  his  customers  won’t  suffer  if  the  market¬ 
ing  data  stored  in  one  of  those  copies  is  a  few  millisec¬ 
onds  out  of  date  —  although  that  wouldn’t  be  true  for  a 
financial  trading  system  where  prices  constantly  change. 

“Sharding,”  or  splitting  databases  also  helps  Constant 


FROM  LUXURY  CAR  SERVICE 
TO  SOFTWARE  AS  A  SERVICE. 
A  BUSINESS  TRANSFORMED. 

EMPIRECLS  SEES  THE  POWER 
OF  WINDOWS  SERVER  2012. 

When  pioneering  ground  transportation  company  EmpireCLS 
decided  to  transform  their  business  model  by  offering  their 
proprietary  dispatch  and  reservation  systems  software  to 
other  companies,  they  chose  the  sophisticated  datacenter 
capabilities  of  Windows  Server  2012. 

With  built-in  features  replacing  an  expensive  third-party 
networking  solution,  and  less  need  for  specialized  support, 
EmpireCLS  was  able  to  rapidly  provision  a  growing  customer 
base  while  reducing  IT  costs  by  30%.  With  operational 
efficiencies  driven  by  Windows  Server  2012,  innovation  is 
taking  a  front  seat  at  EmpireCLS. 

Read  more  about  EmpireCLS's  success  and  see  what  you  can  do 
with  Windows  Server  2012. 

S3  Windows  Server  2012 
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Contact  scale  easily,  he  says.  “We  can  put  a  set  of  custom¬ 
ers  on  Databases  A,  B  and  C,  [which  are]  usually  multiple 
instances  of  the  same  database  with  the  same  schema. 
We  want  them  to  be  identical  and  on  commodity 
hardware,  to  keep  our  operational  costs  low,  so  it’s  a  non- 
event  to  roll  out  a  new  one.  For  50,000  customers,  we 
add  two  commodity  database  servers  running  MySQL,” 
with  no  performance  hit  on  other  users,  says  Piesche. 

Another  vendor  in  this  space  is  CommVault,  which 
says  its  Simpana  software  platform  cuts  storage  costs 
by  up  to  50%,  administrative  overhead  by  up  to  80% 
and  annual  support  costs  by  up  to  35%  by  reducing  the 
number  of  copies  of  data  stored  as  well  as  the  number 
of  storage-related  applications  to  buy  and  maintain. 


Sanbolic  claims  its  Melios  data  management  platform 
provides  high  availability,  application  scale-out  using 
shared-data  server  clusters,  fast  access  to  any  size  files 
in  a  variety  of  workloads,  and  is  scalable  to  more  than 
2,000  physical  or  virtual  nodes  and  up  to  65,000  storage 
devices.  Its  Latency  Targeted  Allocator  allows  the  Melio 
platform  to  share  server-side  flash  and  SSDs  within 
storage  arrays,  as  well  as  conventional  hard  drives, 
across  nodes.  This  eliminates  single  points  of  failure  and 
hard-to-access  data  and  application  silos,  says  CEO  and 
co-founder  Momchil  Michailov. 

Some  newer  vendors  package  their  software  in 
the  form  of  physical  hardware  with  disks  and  proces¬ 
sors.  Gridstore’s  storage  appliances  virtualize  storage 
controllers  as  well  as  data  to  eliminate  single  points 
of  failure  and  provide  faster,  parallel  data  access  from 
many  servers.  This  allows  the  number  of  controllers 
to  grow,  tapping  unused  computing  power  to  scale 
performance  as  well  as  capacity.  However,  it  currently 
supports  only  Windows  and  file-based  storage. 

Another  software-based  approach  to  scalability  is 
distributing  “slices”  of  data  over  many  physical  databases. 
Cleversafe’s  dsNet  technology,  also  sold  as  appliances, 
works  best  with  more  than  a  petabyte  of  storage,  made 
up  of  objects  more  than  50  to  100KB  in  size.  This  is  ideal, 
says  President  and  CEO  Chris  Gladwin,  for  applications 
such  as  photo  sharing  over  the  Web. 

What's  Next 

As  hard  drives  get  bigger  and  faster,  flash  gets  bigger 
and  more  reliable,  and  open-source  storage  stacks 
mature,  some  industry  watchers  see  fundamental 


changes  in  how  organizations  cope  with  the  data  flood. 

With  the  adoption  of  new  nonvolatile  memory 
technologies,  the  need  for  tiering  data  between  solid 
state  and  spinning  disk  will  diminish  as  new  technolo¬ 
gies  become  cost-competitive  with  higher-end  Fibre 
Channel  and  SAS  disks,  predicts  Shetti.  Higher- 
capacity,  lower-cost  SATA  disks  will  still  have  a  role, 
but  he  says  the  complexity  of  packaging  and  different 
software  interfaces  will  discourage  users  from  mixing 
nonvolatile  memory  and  SATA  in  the  same  system. 

Within  three  to  five  years,  the  price  of  flash  drives 
will  be  somewhere  around  the  same  cost  as  high 
performance  disk,  says  Hu  Yoshida,  CTO  at  Hitachi 
Data  Systems.  They  are  already  at  parity,  he  says,  when 
the  capacity  of  the  hard  drives  is  reduced  by  short- 
stroking  (using  only  part  of  the  disk  capacity  to  speed 
performance  by  reducing  the  distance  the  read/write 
heads  must  travel  to  reach  the  data)  and  by  writing 
data  across  multiple  disks  in  RAID  data  protection 
configurations. 

Even  commodity  hard  drives,  however,  will  gain 
speed  as  vendors  add  more  cache  to  them.  Seagate 
expects  such  “hybrid”  drives  to  make  up  most  of  its 
product  line  by  the  middle  of  the  decade. 

Cloud  storage  services  will  provide  slow  but 
extremely  low-cost  archiving  services  to  reduce  the 
in-house  storage  load.  Amazon  Glacier,  for  example, 
costs  as  little  as  1  cent  per  gigabyte  per  month.  While 
“it  could  take  three  to  five  hours  to  retrieve  that  data,” 
that  might  be  no  longer  than  it  would  take  to  restore 
data  from  tape  stored  offsite  —  and  Glacier  would  be 
cost-competitive  with  tape,  says  Greg  Schulz,  founder 
of  consultancy  StoragelO. 

“Object  stores  can  reduce  storage  costs  and  com¬ 
plexity  by  eliminating  the  need  for  hierarchical  file 
systems,”  says  Gladwin.  “In  a  very  large  data  storage 
system,  running  a  file  system  [requires]  additional 
racks  of  servers”  that  consume  power,  take  up  space 
and  cost  money.  With  an  object  store,  he  says,  an  appli¬ 
cation  such  as  a  social  media  website  lets  a  user  search 
for  friends  without  using  a  file  system. 

Meanwhile,  IT  shops  continue  to  be  drawn  to  the 
cloud’s  combination  of  cost  efficiencies,  low-cost  hard¬ 
ware  and  low-cost,  open-source  software. 

Constant  Contact,  for  example,  is  considering  “private 
storage  clouds,”  possibly  using  open-source  software, 
on  the  system  of  a  provider  such  as  Amazon  S3,  for  the 
low  costs  and  “almost  unlimited  horizontal  scale”  they 
can  deliver,  says  Piesche.  Using  Cassandra,  for  example, 
he  says  he  would  like  to  scatter  storage  clusters  among 
distributed  data  centers  for  disaster  recovery  “without 
any  licensing  costs,  without  any  complicated  setup  and 
without  any  manual  intervention.” 

The  replication  capabilities  he  needs  aren’t  available 
yet.  But  he  has  to  keep  looking  because,  as  Schulz  says, 
“For  the  vast  majority  of  people  there’s  no  such  thing  as 
a  data  recession.”  ♦ 

Scheier  is  a  veteran  technology  writer.  He  can  be  reached 
at  bob@scheierassociates.com. 
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with  managing  data  storage.  They  demand  simplicity 


(but  want  power,  too).  By  Kevin  Fogarty 


HE  TORRENT  OF  DATA  that  threatens  to 
overwhelm  many  corporate  IT  departments 
has  driven  demand  for  new  types  of  storage 
technology.  Storage  managers  aren’t  asking 
for  ever-larger,  ever-more-complex  boxes  like 
those  that  play  leading  roles  in  traditional 
marketing  campaigns  and  vendor  bragfests. 
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Storage  managers  need  faster,  higher-capacity  hardware  to 
keep  up  with  volumes  of  data  that  nearly  double  every  two  years. 

What  they  need  even  more,  however,  is  simplicity. 

“With  budgets  growing  slowly  and  head  counts  actually 
going  down  a  bit,  the  challenge  eventually  becomes.  How  do 
you  manage  30%  more  data  without  30%  more  budget  or  30% 
more  head  count?”  says  Dick  Csaplar,  a  virtualization  and 
storage  analyst  at  Aberdeen  Group. 

Aberdeen’s  research  indicates  that  most  companies  have 
between  eight  and  18  storage  specialists  on  staff,  most  with  job 
descriptions  that  have  been  expanding  for  years. 

“It’s  not  enough  to  know  which  box  in  the  warehouse  has  the 
tape  with  the  data  you  need,”  says  Csaplar.  “You  have  to  be  able  to 
run  e-discovery  searches  and  produce  the  data  within  strict  time 
limits.  That’s  a  big  change  even  with  the  same  amount  of  data.” 

Simply  storing,  tracking  and  securing  vast  amounts  of  data 
is  a  challenge  for  any  IT  department,  but  the  oceans  of  data 
are  to  blame  only  for  the  demand  for  storage  space,  not  for  IT’s 
limited  ability  to  deal  with  it,  according  to  IDC  storage  analyst 
Ashish  Nadkarni. 

IT’s  real  difficulty  —  the  lack  of  storage  specialists  and, 
ultimately,  the  need  for  simpler  solutions  to  complex  storage 
problems  —  started  with  one  of  the  biggest  wins  corporate  IT 
has  ever  had:  server  virtualization,  Nadkarni  says. 


“We  have  the  file  servers  and  VPN  and  whatever  else,  so 
we  could  have  just  set  up  a  file-share  ourselves,”  says  Bill 
O’Donnell,  chief  architect  at  Kayak.  “It’s  less  of  a  headache 
to  use  Dropbox  than  it  is  to  provision  a  big  RAID  array  in  the 
server  room  and  set  up  LDAP  groups  and  work  through  issues 
with  the  VPN  and  answer  calls  from  people  in  [the]  Zurich 
[office]  who  hate  using  it.” 

Kayak  uses  the  year-old  Dropbox  for  Teams  service,  which 
acts  as  a  central  repository  for  teams  of  any  size,  keeping  every¬ 
one  up  to  date  using  Dropbox  client  software  that  automatically 
replicates  any  changes  made  on  the  service  to  whatever  device 
a  team  member  is  using  at  the  time. 

The  service  costs  $795  per  year  for  five  team  members  and 
$125  for  each  additional  member.  There  is  no  limit  on  the 
amount  of  space  they  can  use,  but  a  Teams  account  starts  with 
1  terabyte  of  storage,  according  to  Dropbox. 

“Doing  it  ourselves  would  be  time-consuming  and  frustrat¬ 
ing,  and  Dropbox  is  pretty  easy  and  people  know  we’ll  get  those 
files  onto  their  disks  without  their  having  to  do  much  about  it,” 
O’Donnell  says. 

Dropbox  for  Teams  encrypts  data  being  transmitted  across 
the  Internet  and  gives  administrators  a  simple  interface  that 
tells  them  which  team  members  are  logged  in  and  from  where. 
It  can  also  link  or  unlink  applications  to  data  on  the  service  and 


The  challenge  eventually  becomes,  How  do  you  manage  30%  more 
data  without  30%  more  budget  or  30%  more  head  count? 

DICK  CSAPLAR,  VIRTUALIZATION  AND  STORAGE  ANALYST,  ABERDEEN  GROUP 


Virtualized  systems  are  more  efficient  than  older  equipment, 
and  they  changed  IT  in  fundamental  ways.  Rather  than  having 
one  group  of  specialists  responsible  for  all  the  storage,  another  re¬ 
sponsible  for  applications  and  a  third  for  servers,  Nadkarni  says, 
responsibility  for  all  three  fell,  usually,  to  a  single  administrator. 

That  change  was  so  fundamental  that  it  rippled  throughout 
IT,  forcing  organizational  changes  designed  to  match  what  the 
company  was  trying  to  accomplish  with  virtual  servers,  virtual 
apps,  mobile  devices,  cloud  platforms  and  all  the  other  follow- 
on  technologies,  Csaplar  says. 

“Ultimately,  everything  else  has  to  get  simpler  because 
virtual-server  admins  don’t  have  time  to  learn  a  lot  of  overly 
complex  interfaces,”  Kerns  says. 

Finding  Efficiency  in  the  Cloud 

IT  found  some  of  the  simple  efficiency  it  needed  in  the  same 
technology  blamed  for  at  least  part  of  the  flood  of  data  that  is 
drowning  IT:  the  cloud. 

Discount  travel  website  Kayak.com,  for  example,  found  that 
building  file-sharing  systems  that  its  developers  could  use  to  ex¬ 
change  code,  graphics  and  other  files  was  far  more  complicated 
and  troublesome  than  just  handing  the  job  off  to  Dropbox  —  a 
Web  service  that  has  become  the  poster  child  for  free,  unmoni¬ 
tored  consumer  storage. 
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log  all  activity  to  give  admins  a  simple  view  of  everything  at 
one  time,  according  to  Anand  Subramani,  product  manager  for 
Dropbox’s  Teams  service. 

Since  early  February,  Teams  has  also  supported  two-factor  au¬ 
thentication,  which  increases  security  by  requiring  not  just  a  user’s 
username  and  password  but  also  a  passcode  from  a  separate  device 
only  the  user  holds. 

Other  cloud  services  are  also  adding  business-friendly 
management  features,  but  cloud-based  storage  has  proved  itself 
secure  and  reliable  enough  for  many  companies  to  use  the  same 
version  that  consumers  use,  according  to  Randy  Kerns,  a  senior 
strategist  at  Evaluator  Group,  a  storage  consultancy. 

“Information  is  leaking  out  everywhere  —  mobile  devices, 
personal  cloud  accounts,  home  devices,  you  name  it,”  Kerns  says. 

That  kind  of  “leak”  and  the  decision  to  use  cloud  services 
aimed  at  consumers  may  look  like  red  flags  to  traditional  IT 
storage  managers  but  are  actually  reasonable  accommodations 
to  both  the  needs  of  users  and  the  reality  of  short-staffed  IT 
departments,  he  says. 

“People  inside  a  company  look  for  the  simplest  way  to  get 
something  done,  which  has  been  a  big  force  in  cloud  and 
mobile  and  other  areas,”  Kerns  says.  “IT  has  had  to  react  to 
that,  so  they’re  asking  for  ways  to  monitor  who’s  doing  what 
[and  create]  some  kind  of  tracking  for  the  data.” 


Cloud:  Not  the  Whole  Problem 

Using  the  cloud  for  discrete  functions  like  file  sharing  for  a 
single  department  or  SaaS  application  instead  of  one  installed 
on-premises  can  make  some  storage  issues  easier  to  deal  with. 
But  that  doesn’t  address  the  core  problem,  analysts  say. 

The  difference  in  upfront  capital  expense  is  so  great  that 
Kayak  would  almost  certainly  house  most  of  its  software  on 
Amazon’s  EC2  or  other  commercial  clouds  rather  than  the  on¬ 
premises  storage  and  Linux  servers  it  uses  now,  O’Donnell  says. 

The  tools  available  to 
configure  storage  networks 
and  RAID  arrays  were  “pretty 
heinous”  in  2004  when  Kayak 
was  founded,  O’Donnell  says. 

“It’s  getting  better,  though. 

Load  balancers,  the  con¬ 
soles  to  set  up  the  arrays 
have  improved  by  leaps  and 
bounds  over  the  past  few 
years,”  he  says.  “It’s  almost 
like  consumerization:  People 
get  used  to  highly  consumer- 
oriented  user  interfaces  and 
very  slowly  the  enterprise 
[vendors]  are  catching  up.” 

The  key  to  simple  storage 
management  isn’t  a  series  of 
point  products  or  appliances, 

Nadkarni  says.  It’s  a  set  of 
abstraction  and  automation 
tools  that  allow  nonspecial¬ 
ists  to  manage  a  company’s 
storage  resources  with  easily 
learned  tools  or  interfaces. 

EMC’s  FAST  (Fully  Auto¬ 
mated  Storage  Tiering),  for 
example,  was  designed  to 
move  data  from  expensive, 
solid-state  drive  (SSD)  systems 
or  high-performing  disk 
arrays  to  less  expensive  media 
based  on  how  often  the  data 
is  used.  Originally  designed  to 
work  only  with  EMC’s  physi¬ 
cal  disk  arrays,  the  system  is 
now  able  to  manage  data  for 
virtual  servers  and  include 
all-SSD  storage  in  its  migra¬ 
tion  decisions. 

“Efficiency  comes  from  automation,  and  a  lot  of  the  automa¬ 
tion  is  coming  from  things  like  FAST  —  from  storage  optimiza¬ 
tion  software  from  other  vendors  that  allow  storage  to  be  easily 
managed  without  people  having  to  deal  with  performance 
issues  or  spend  hours  moving  data  from  one  place  or  another,” 
Nadkarni  says. 

Most  of  the  big  storage  vendors  talk  as  if  they’re  more  ad¬ 
vanced  than  they  actually  are,  however,  Kerns  says. 

“The  issue  is  more  than  just  how  to  make  things  more  user- 
friendly.  They  need  to  make  the  core  functions  of  the  whole 


information  management  infrastructure  easier  to  access  and 
easier  to  apply,”  Kerns  says.  That’s  exactly  what  EMC  did  last 
year  when  it  adapted  the  popular  software  that  controls  its 
lower-end  systems  to  also  manage  Symmetrix  —  a  high-end 
storage  system  with  a  reputation  for  being  difficult  to  configure 
and  manage,  Nadkarni  says. 

IBM  has  done  something  similar  by  expanding  its  Tivoli 
Storage  Manager  into  a  storage-infrastructure  system  designed 
to  cover  storage  from  IBM  and  other  vendors. 

“The  questions  they  have 
to  ask  are  ‘Can  we  do  it 
quickly?’  and  ‘Can  we  do 
it  simply?”’  Nadkarni  says. 
“Virtualization  created  a 
huge  shift  in  how  storage 
is  consumed  and  forced 
vendors  to  create  automated 
workflows  that  permit 
provisioning  from  different 
platforms  and  offload  some 
storage  tasks  to  admins,” 
Nadkarni  says.  But  it  may 
not  be  the  big  vendors 
that  define  the  future  of 
convenient  enterprise 
storage,  Csaplar  says. 

“There  are  so  many  start¬ 
ups  out  there  doing  innova¬ 
tive  things  much  faster  than 
the  big  vendors  that  the  big 
guys  [like  IBM,  HDS,  EMC 
and  NetApp]  may  not  catch 
up  without  a  lot  of  acquisi¬ 
tions,”  Csaplar  says. 

The  limitation  of  startups 
is  that  their  scope  tends 
to  be  narrower  than  that 
of  big  vendors  that  aim  to 
offer  comprehensive  storage 
infrastructure  management 
systems  rather  than  tightly 
focused,  highly  automated 
systems. 

“If  you  look  at  Dropbox  or 
a  NAS  vendors  like  Synology, 
or  NetGear’s  ReadyNAS, 
they’re  coming  at  [storage 
management]  from  a  differ¬ 
ent  direction,  almost  coming 
from  the  bottom  up  to  eat  things  like  FAST  and  the  other 
IT-focused  things,”  O’Donnell  says.  “Synology  started  more  as  a 
home  or  small  business  thing,  but  that  console  is  incredible.  It’s 
windowed,  interactive,  almost  like  a  Windows  system.  You’d 
have  killed  to  have  it  10  years  ago. 

“The  bar  for  how  good  a  user  interface  or  management 
system  is  has  been  raised,  a  lot,”  O’Donnell  says.  “The  big  guys 
will  have  to  catch  up.” 

Fogarty  writes  about  enterprise  IT.  You  can  follow  him 
on  Twitter  (@KevinFogarty). 


Next- Gen  Firewalls 
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Bom  for  carriers. 


Bred  for  your  enterprise. 


Introducing  the 

Dell  SonicWALL  SuperMassive  9000  Series. 

Engineered  to  address  the  security  and  high  performance 
demands  of  carriers  and  service  providers,  the  Delf  SonicWALL"' 
SuperMassive  "  Next-Generation  Firewall  platform  examines 
every  packet  without  compromising  network  performance. 
The  new  Dell  SonicWALL  SuperMassive  9000  Series  offers 
that  same  high  level  of  protection  and  performance  to  the 
enterprise  in  a  one-rack  unit  (1U)  appliance  that  saves  space, 
power,  and  cooling  costs. 


sonicwall.com/SuperMassive9000 


-  The  power  to  do  more 

.■ 

other  Dell  SonicWALL  product  and  service  names  and  slogans  are  tradem^ks;  ofDeiilnc. 
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From  phishing  your  own 
employees  to  sharing  your 
company’s  hack  history,  these 
techniques  can  help  you  get 
-  and  keep  -  users’  attention 
about  security,  by stacy collett 


HE  STATISTICS  ARE  STAGGERING:  Last  year, 
Symantec  blocked  more  than  5.5  billion 
malware  attacks,  an  81%  increase  over  2010, 
and  reported  a  35%  increase  in  Web-based 
attacks  and  a  41%  increase  in  new  malware 
variants.  Those  findings,  documented  in  the 
company’s  latest  annual  “Internet  Security 
Threat  Report,”  might  cause  IT  leaders  to  wonder  if  they’re 
doing  everything  possible  to  protect  their  organizations. 
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And  well  they  should.  Security  folks,  in 
struggling  to  establish  policies  and  procedures 
that  are  both  effective  and  easy  to  implement, 
often  forget  a  crucial  step,  experts  say:  com¬ 
municating  their  security  goals  effectively,  so 
that  employees  not  only  follow  the  security 
procedures  but  also  understand  the  reason  for 
having  a  security  policy  and  embrace  its  goals. 

“Compliance  is  necessary,  but  it’s  not  suf¬ 
ficient,”  says  Malcolm  Harkins,  vice  president 
and  chief  information  security  officer  at  Intel. 

Harkins’  goal  is  to  get  employees  to  go  beyond 
compliance  toward  full  commitment  to  pro¬ 
tecting  the  company’s  information.  “If  they’re 
committed  to  doing  the  right  thing  and  pro¬ 
tecting  the  company,  and  if  they’re  provided 
with  the  right  information,  [then]  they’ll  make 
reasonable  risk  decisions.” 

To  be  sure,  employees  don’t  play  a  role  in 
every  type  of  corporate  security  breach  (see 
chart).  But  user  behavior  and  noncompliance 
are  implicated  in  many,  including  mobile 
malware  attacks,  social  network  schemes  and 
advanced  target  attacks.  In  the  face  of  such 
an  onslaught,  a  wall  poster  of  security  tips 
hanging  in  the  break  room  is  useless,  says  Julie 
Peeler,  foundation  director  at  the  International 
Information  Systems  Security  Certification  Consortium  —  also 
known  as  (ISC)2  —  a  global,  nonprofit  organization  that  educates 
and  certifies  information  security  professionals. 

Managers  need  to  ensure  that  employees  understand  the  secu¬ 
rity  posture  of  the  company  from  day  one,  Peeler  says.  Employ¬ 
ees  must  be  willing  to  sign  confidentiality  agreements,  attend 
training  and  practice  ongoing  vigilance.  “Security  training  is  not 
a  one-time  event.  It  has  to  be  integrated  throughout  the  entire 
organization,  and  it  has  to  come  from  the  top,”  she  says. 

Here’s  a  look  at  five  best  practices  for  making  information 
security  a  corporatewide  responsibility. 

IPut  Threats  Into  Context 

People  don’t  internalize  security  best  practices  by 
simply  being  told  what  to  do  or  by  being  scared  into 
compliance,  Peeler  says.  And  Harkins  agrees:  “You 
don’t  want  to  spin  information  security  compliance  as 
fear,”  he  says.  “Fear  is  like  junk  food  —  it  can  sustain 
you  for  a  bit,  but  in  the  long  run  it’s  not  healthy.” 

Instead,  both  experts  say,  employees  are  more  likely  to  be 
motivated  into  compliance  if  security  managers  can  put  risk  into  a 
context  that  relates  to  them  directly.  Most  employees  know  that  a 
security  breach  affects  not  just  data,  but  also  the  company’s  brand 
and  reputation.  But  Harkins  notes  that  employees  in  some  busi¬ 
ness  units  might  not  fully  understand  that  they  could  play  a  role  in 
a  breach  just  by  doing  what  they  consider  business  as  usual. 

A  marketing  team,  for  instance,  might  want  to  launch  a  new 
interactive  website  ahead  if  its  competitors,  he  explains.  The 
website’s  content  might  seem  harmless  if,  for  example,  it  doesn’t 
include  intellectual  property  —  just  a  few  interactive  screens  and 
videos.  But  what  if  a  third-party  provider  that  helped  develop  the 
site  left  vulnerabilities  that  allow  a  hacker  to  implant  malware  in 


Compliance  [with 
the  company’s 
security  policy]  is 
necessary,  but  it’s 
not  sufficient. 

MALCOM  HARKINS,  VICE  PRESIDENT 
AND  CHIEF  INFORMATION  SECURITY 
OFFICER,  INTEL 


one  of  the  links  on  the  site?  Explaining  such 
risks  ahead  of  time,  and  in  a  way  that’s  specific 
to  the  department’s  line  of  business,  helps 
ensure  the  group  will  do  what’s  necessary  to 
mitigate  damage,  Harkins  says. 

Real-world  examples  can  also  drive  the 
message  home.  When  a  data  breach  makes  the 
news,  use  it  as  a  teaching  tool  —  in  training 
classes,  via  email  or  through  video  presenta¬ 
tions.  Discuss  the  likelihood  of  a  similar 
breach  occurring  in  your  organization.  Ask: 
How  would  a  breach  like  this  have  affected 
our  company?  What  people  or  business  units 
should  remain  extra  vigilant  against  a  similar 
attack?  What  security  measures  do  you  already 
have  in  place  to  protect  against  such  an  attack? 

Go  Phishing,  Internally 

Another  effective  technique  is  to 
launch  simulated  phishing  scams. 
Then  see  how  many  employees  take 
the  bait,  and  offer  advice  on  avoiding 
similar  real-world  scams. 

Royal  Philips  Electronics  recently  launched 
a  pilot  program  of  controlled  phishing  attacks, 
says  Nick  Mankovich,  chief  information 
security  officer.  Working  with  a  professional 
phishing  partner,  whom  Mankovich  declined  to  name,  Philips 
simulates  an  email  scam  that  tries  to  get  employees  to  click  a  link 
to  a  website  and  then  enter  their  password  and  username.  When 
an  employee  clicks  on  the  link,  a  message  pops  up  explaining  his 


Stolen  login  credentials 

30% 

Backdoor  malware 

18% 

Backdoor  or  command-and-control  channel  hacking  17% 

Physical  tampering 

17% 

Keylogger/form-grabber/spyware 

13% 

Pretexting  (classic  social  engineering) 

12% 

Brute  force  and  dictionary  attacks 

8% 

SQL  injection  exploits 

8% 

Phishing  (or  any  type  of  “ishing”) 

8% 

Command-and-control  malware 

8% 

SOURCE:  ANALYSIS  OF  855  CONFIRMED  ORGANIZATIONAL  DATA  BREACHES  IN¬ 
VESTIGATED  IN  2011  BY  VERIZON  RISK  TEAM  OR  ONE  OF  ITS  INTERNATIONAL  FO¬ 
RENSIC  PARTNERS  IN  ITS  2012  DATA  BREACH  INVESTIGATIONS  REPORT.  TOTALS 
EXCEED  100%  BECAUSE  INCIDENTS  OFTEN  INVOLVE  MULTIPLE  THREAT  EVENTS. 
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error  and  offering  tips  to  avoid  being  scammed  in  the  future. 

“It’s  not  about  embarrassing  or  surveilling  anyone.  It’s  really 
about  giving  material  that  means  something  at  the  moment  when 
they  click  on  the  [phony]  link,”  Mankovich  says. 

Depending  on  the  exact  nature  of  the  attack,  tips  might 
include  questions  like:  Did  the  email  come  from  a  trusted 
source?  Was  there  something  misspelled  or  unusual  about  the 
link?  Did  you  remember  to  hover  the  mouse  over  the  link  and 
check  the  bottom  of  the  screen  to  see  if  the  actual  target  URL 
matched  the  one  in  the  body  of  the  message? 

So  far,  Philips  has  conducted  three  phishing  experiments  in¬ 
volving  250  employees  each;  eventually,  Mankovich  hopes  to  test 
all  of  the  company’s  90,000  email-connected  employees  world¬ 
wide.  Future  tests  will  be  stealthier  and  more  intricate,  he  says. 

“At  the  end  of  each  pilot,  we  talk  to  a  few  of  the  users  to  see 
what  they  felt  about  the  experience  —  both  those  who  fell  for  the 
phishing  and  those  who  did  not,”  Mankovich  says.  “We  [typi¬ 
cally]  have  a  very  small  percentage  of  people  who  did  the  bad 
behavior,  and  those  people  do  get  the  message.” 


3  Protect  to  Enable 

In  light  of  the  increasingly  virulent  cyberthreats  out 
in  the  wild,  IT  leaders  struggle  to  protect  the  organiza¬ 
tion  while  giving  business  units  the  freedom  to  choose 
their  own  apps,  launch  their  own  online  initiatives 
and  adopt  new  devices.  But  “the  more  drag  you  put 
on  information  flow,  the  slower  the  business  velocity,  which  also 
creates  strategic  risk  issues,”  Harkins  says. 

That’s  why  Intel  adopted  the  mantra  “protect  to  enable”  three 
years  ago.  Rather  than  focusing  primarily  on  locking  down 
assets,  the  information  security  group  aims  to  enable  business 
goals  “while  applying  a  reasonable  level  of  protection,”  Harkins 
says.  To  do  this,  IT  needs  three  things:  an  adequate  level  of 
understanding  of  the  business  side’s  situation  and  needs,  input 
from  both  technical  and  business  professionals  on  the  risks  and 
rewards  of  a  given  security  decision,  and  a  clear  channel  of  com¬ 
munication  among  all  levels  and  units  of  the  business. 

In  2009,  Intel’s  IT  department  partnered  with  the  company’s 
legal  and  human  resources  groups  to  define  security  and  usage 
policies  for  a  new  bring-your-own-device  program.  The  company 
began  allowing  access  to  corporate  email  and  calendars  from 
employee-owned  smartphones  in  January  of  2010,  Harkins  says. 
The  initiative  has  been  successful  in  keeping  corporate  data  safe 
while  allowing  employees  to  use  their  own  devices  for  work.  And 
as  new  devices  come  on  board,  the  company  continues  to  define 
new  security  and  use  policies. 


Share  Your  Company’s  Hack  History 

Although  controversial,  sharing  —  in  confidence,  of 
course  —  the  number  and  nature  of  attempted  hacks 
on  your  company’s  systems  can  be  a  strong  motiva¬ 
tor  toward  security  compliance,  Peeler  says.  “People 
don’t  really  understand  how  often  a  company’s  own 
systems  are  under  attack,”  she  points  out. 

Harkins  agrees.  Security  leaders,  he  says,  “have  got  to  show 
data,  and  relate  it  to  the  business  goals”  and  then  they  have  to 
show  how  progress  toward  achieving  those  goals  will  be  affected  if 
ongoing  incidents  are  not  addressed.  “The  more  your  predictions 
start  to  come  true,”  he  adds,  “[the  more]  you’re  demonstrating  that 


NSURANCE  provider  Endurance  Specialty  Hold¬ 
ings  tries  to  establish  policies  that  don’t  limit 
users  from  performing  their  jobs,  says  CIO  Tom 
Terry.  “There’s  generally  a  good  reason  why  they’re 
'  asking  for  a  particular  software,  tool  or  device.  We  at¬ 
tempt  to  understand  the  problem  they’re  trying  to  solve  and 
give  them  tools  to  address  their  needs  in  a  secure  manner.” 

For  instance,  many  business  units  needed  USB  devices 
to  transfer  data,  but  the  IT  organization  knew  that  USB 
devices  can  be  a  major  contributor  to  data  loss  if  they’re 
not  managed  properly.  So  the  Endurance  IT  team  said 
“yes,  but . . .”  by  distributing  the  devices  but  also  institut¬ 
ing  -  and  explaining  -  a  policy  mandating  that  the  devices 
had  to  be  password-protected  and  encrypted. 

“When  the  business  sees  you  working  with  them  in  a  col¬ 
laborative  fashion,  then  you  can  move  the  dial  forward”  in 
terms  of  a  shared  corporate  response  to  security,  says  Terry. 

-  STACY  COLLETT 


you  know  what  you’re  doing  and  that  you’re  not  trying  to  impede 
the  business  —  you’re  trying  to  help  the  business.” 

Intel  has  found  ways  to  put  breach  data  to  good  use  without 
sharing  too  much  confidential  information.  For  instance,  Harkins 
says,  “we  had  an  employee  who  stole  intellectual  property  from  us 
a  few  years  ago  and  was  convicted  earlier  this  year.  We  posted  to 
all  employees  the  story  of  what  happened,  how  we  found  out,  and 
reminded  everyone  of  the  expectations  we  have  of  them.” 

Intel  also  posts  its  lost  or  stolen  laptop  rates  and  shares  mis¬ 
takes  made  by  employees,  such  as  posting  information  to  a  social 
site,  and  describes  the  risk  that  created  for  the  company.  “But  we 
don’t  share  who  did  it  or  other  details  that  would  embarrass  or 
create  issues  for  the  employee,”  Harkins  clarifies. 

Others  have  mixed  feelings  about  such  tactics.  Mankovich  says 
sharing  information  about  breaches  “bears  consideration,”  but  he 
worries  that  any  shared  information  could  jump  the  fence  to  the 
outside  world.  “My  first  reaction  is  that,  with  124,000  employees 
in  60  countries,  we  couldn’t  avoid  it  going  public,”  Mankovich 
says.  “We  must  consider  the  downside  of  providing  the  bad  guys 
with  attack  intelligence.  That  in  itself  might  increase  risk.” 

Ultimately,  convincing  employees  to  remain  vigilant  is  a  job 
shared  by  both  IT  and  the  business.  “We  really  have  to  under¬ 
stand  how  the  workforce  is  changing,  how  are  we  changing  the 
workforce,  and  how  the  expectations  of  people  who  use  our 
products  or  partner  with  us  are  changing,”  Mankovich  sums  up. 
“The  job  is  endless,  but  it’s  exciting.”  ♦ 

Collett  is  a  Computerworld  contributing  writer.  You  can  contact 
her  at  stcollett@comcast.net. 
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Security  Lab  Is  a  Promising  Step 

The  R&D  department  will  have  a  sandbox  for  testing  the 
company’s  software  products.  For  once,  security  isn’t  last. 


IT’S  A  GREAT  THING  when  a  secu¬ 
rity  manager  doesn’t  have  to  go 
into  battle  mode  every  time  a  new 
corporate  initiative  emerges.  When 
other  departments  show  signs  that 
they  aren’t  putting  security  last,  I  can 
relax  a  bit.  But  just  a  little  bit.  Even  in 
those  cases,  I  want  to  have  input. 

For  the  most  part,  I  was  happy  when 
the  R&D  department  came  to  me  last 
week  to  discuss  their  plan  to  create  a 
software  security  test  lab.  The  R&D  team 
has  been  charged  with  enhancing  the 
security  of  the  software 
portion  of  our  products, 
and  one  of  their  require¬ 
ments  is  to  create  an 
environment  in  which 
they  can  run  hacking 
and  assessment  tools  and  code-scanning 
software.  That  will  free  them  up  to 
conduct  such  activity  whenever  they 
want,  without  notifying  anyone.  When 
my  department  conducts  security  as¬ 
sessments  or  penetration  testing  against 
our  corporate  applications,  we  schedule 
the  activity  at  a  time  that  minimizes  the 
impact,  and  we  let  everyone  know. 

Before  the  architecture  team  went  to 
work  designing  the  lab,  I  created  a  set 
of  security  requirements.  The  first  and 


most  important  was  that  the  lab  must  be 
segmented  from  our  production  network. 
Other  requirements  included  a  separate 
firewall  protecting  the  lab  from  the 
corporate  network  and  extremely  limited 
access  to  the  public  Internet.  I  don’t  want 
any  inquisitive  engineers  running  scans 
against  resources  on  the  Internet  —  that 
could  get  us  into  trouble.  Also,  access  to 
the  lab  must  be  controlled  and  logged. 

The  lab  will  be  segmented  into  several 
virtual  LANs,  with  firewall  rules  in  place 
to  protect  one  VLAN  from  another.  For 
example,  one  VLAN 
will  contain  the  various 
security  tools  for 
running  assessments, 
penetration  testing, 
code  scanning  and 
other  activity.  The  products  to  be  tested 
will  reside  on  another  VLAN,  while  any 
source  code  will  reside  on  yet  another. 
Most  of  the  resources  will  be  installed 
on  virtual  machines,  so  the  servers  can 
be  quickly  taken  down  and  redeployed  if 
necessary.  We  will  set  up  a  bastion  host, 
with  access  to  the  lab  network  restricted 
to  those  who  have  access  to  the  lab  itself. 

At  least  at  first,  we’ll  stock  the  lab 
with  some  fairly  common  tools,  and  then 
upgrade  as  the  engineers  get  properly 


the  discussions  about 
security!  computerworld.com/ 
blogs/security 


The  lab  will  be  segmented  into  several  virtual 
LANs,  with  firewalls  to  protect  them. 


vv  It’s  good 

//  news,  and  guidance  from 
the  security  manager  will 
ensure  that  it’s  done  right. 


trained  on  how  to  conduct  assessments. 
One  will  be  Nessus,  a  fairly  easy-to-use 
tool  that  scans  for  server  misconfigura- 
tions  and  also  has  an  extensive  menu  of 
plug-ins,  including  a  variety  of  applica¬ 
tion  vulnerability  checks.  Another  tool 
will  be  Metasploit,  which  is  one  of  my  fa¬ 
vorites.  It  can  be  very  helpful  in  running 
attacks  against  potentially  vulnerable 
systems.  For  example,  if  you  discover  a 
SQL  injection  vulnerability,  Metasploit 
can  attempt  several  SQL  attacks  that 
will  validate  the  vulnerability  —  you 
don’t  have  to  be  an  expert  in  SQL.  That’s 
definitely  handy,  since  SQL  injection 
has  been  used  in  many  recent  attacks 
compromising  user  passwords. 

Another  of  my  favorites  is  BurpSuite,  a 
set  of  application  assessment  utilities  that 
let  you  do  things  like  intercept  traffic 
between  the  client  browser  and  Web  ap¬ 
plication.  For  example,  if  an  application’s 
password-reset  logic  isn’t  written  prop¬ 
erly,  you  could  use  BurpSuite  to  intercept 
and  alter  the  parameters  in  an  attempt  to 
change  another  user’s  password. 

We’ll  have  other  utilities,  of  course,  as 
well  as  a  tool  to  run  static  code  analysis. 
That  tool  will  eventually  be  incorporated 
into  our  software  development  life  cycle 
and  will  be  employed  to  assess  the  sanity 
of  our  source  code. 

We  need  our  engineers  to  use  all  these 
tools  properly,  and  I  want  them  to  learn 
to  think  like  a  hacker.  To  help,  I’ll  find 
a  trusted  third  party  to  provide  training 
and  guidance  in  application  assessments 
and  penetration  testing.  Slowly  but 
surely,  all  of  this  will  get  all  of  our  en¬ 
gineers  to  thinking  about  security  early 
and  often  in  the  development  process.  ♦ 
This  week’s  journal  is  written  by  a  real 
security  manager,  “Mathias  Thurman,” 
whose  name  and  employer  have  been 
disguised  for  obvious  reasons.  Contact  him 
at  mathias_thurman@yahoo.corn. 
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OPINION 


iPad  vs.  PC:  Sometimes  the 
Accepted  Wisdom  Is  Right 


Just  because 
PC  makers  are 
innovating 
doesn’t  mean 
people  will 
buy  the  new 
hardware. 


Preston  Gralla  is  a 

Computerworld.com 
contributing  editor 
and  the  author  of 
more  than  35  books, 
including  How  the 
Internet  Works 
(Que.  2006). 


ILL  INNOVATIVE  PCs  put  an  end  to  the  iPad  era? 

It  has  become  accepted  wisdom  among  IT  professionals  and 
industry  observers  that  tablets  have  eaten  heavily  into  PC  sales 
and  will  continue  to  do  so,  bringing  the  PC  era  to  a  close. 


Of  course,  there  is  always  a  naysayer,  and  at 
least  one  analyst  is  challenging  the  accepted 
wisdom.  Citibank’s  Glen  Yeung  argues  that  PCs 
will  reclaim  the  innovation  crown  from  Apple’s 
iPad.  In  a  recent  research  note  to  clients,  Yeung 
says  that  Apple’s  plans  for  upgrading  the  next 
generation  of  iPads  calls  for  only  the  basics:  an 
improved  screen,  a  smaller  and  lighter  footprint 
and  a  new  processor.  His  conclusion:  “iPad  in¬ 
novation  of  this  nature  is  insufficient  to  reverse 
share  loss.” 

For  him,  true  innovation  will  come  in  the 
Windows  world,  where  a  new  generation  of 
“touch-based,  ultrathin,  all-day  notebooks  at  im¬ 
proving  price  points”  is  poised  to  turn  people  back 
to  the  possibilities  of  a  PC. 

Intel’s  new  Haswell  chip  will  make  this  pos¬ 
sible,  Yeung  says.  I  won’t  get  into  all  the  nitty- 
gritty  specs  of  the  Haswell  chip.  But  here’s  what’s 
important:  The  chip,  expected  to  be  launched  in 
June,  is  designed  to  deliver  high  performance  with 
very  low  power  consumption.  In  addition,  Yeung 
claims  that  Intel  will  require  all  Haswell-based 
ultrabooks  to  be  touch-enabled,  adding  that  the 
company  “envisions  price  points  as  low  as  $599.” 

But  the  Haswell  chip  isn’t  just  for  ultrabooks. 
You  can  also  expect  Windows  8  tablets,  as  well 
as  hybrid  devices  —  thin,  light  machines  that  do 
dual  duty  as  notebooks  and  tablets.  It’s  become  a 
truism  that  tablets  are  for  consuming  content  and 
notebooks  for  creating  it.  These  hybrids  will  be 
able  to  change  form  and  do  both. 

There’s  some  evidence  that  Yeung  might  be  on 
to  something.  A  recent  Forrester  report,  “2013 


Mobile  Workforce  Adoption  Trends,”  found  that 
for  their  next  tablet,  information  workers  favor 
Windows  over  the  iPad,  with  32%  saying  they  want 
a  Windows  tablet,  26%  opting  for  an  Apple  tablet, 
and  12%  choosing  an  Android  device.  In  total,  the 
report  claims,  200  million  information  workers 
prefer  Windows  tablets  over  competing  devices. 

It’s  also  clear  that  hardware  makers  are  experi¬ 
menting  far  more  with  Windows  devices  than 
Apple  is  with  the  iPad.  With  Apple’s  current  plans, 
the  iPad  you’re  using  today  is  largely  the  same  as 
the  next  iPad  you’ll  buy,  except  the  new  one  will 
be  faster  and  lighter  and  will  have  a  better  screen. 
Windows  8,  though,  has  led  to  an  explosion  in 
the  number  of  form  factors  and  ways  to  interact 
with  the  operating  system.  Notable  new  options 
include  touch-enabled  ultrabooks  and  a  variety 
of  tablet-ultrabook  combos.  There’s  even  talk  of 
a  Windows  “phablet,”  a  Windows  Phone  crossed 
with  a  Windows  tablet. 

That  all  bodes  well  for  Windows.  But  I’m 
not  yet  convinced  that  Yeung  is  right.  Sales  of 
Windows  8  devices  remain  sluggish,  and  iPad 
sales  show  no  sign  of  slowing  down.  Moreover,  a 
Gartner  report  says  that  the  popularity  of  iPads 
and  iPhones  is  forcing  enterprises  to  support  Macs 
as  well  as  PCs,  and  that  Macs  will  be  as  commonly 
accepted  in  enterprises  as  PCs  by  2014. 

In  the  hardware  world,  there  is  no  “build  it 
and  they  will  come”  imperative.  Just  because 
PC  makers  are  innovating  doesn’t  mean  people 
will  buy  the  new  hardware.  So  until  I  see  PC  and 
Windows  tablet  sales  leap  and  iPad  sales  stagnate, 

I  won’t  be  a  believer  in  Yeung’s  theory.  ♦ 
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ASK  A  PREMIER  100  IT  LEADER 

Michael 
Capone 

The  CIO  at  A  DP  answers 
questions  on  managing 
VS.  leading,  and  more. 


How  does  a  good  manager  become 
a  leader?  Managing  and  leading 
have  virtually  nothing  to  do  with 
one  another.  Managing  implies  su¬ 
pervision  and  providing  direction, 
both  which  are  of  course  necessary 
activities  in  any  orga¬ 
nization.  Leading  is  all 
about  creating  a  vision 
that  is  so  compelling 
that  people  will  fol¬ 
low  you  even  if  you 
don’t  wield  any  formal 
authority.  We  assume 
that  it’s  a  natural  pro¬ 
gression  for  managers 
to  become  leaders,  but  this  is  often 
not  the  case.  Many  of  the  most  ex¬ 
traordinary  acts  of  leadership  I  have 
witnessed  have  come  from  people 
who  had  no  management  responsi¬ 
bility  whatsoever. 


I’m  thinking  about  pursuing  an 
MBA.  What  should  I  study?  Finance. 
Strong  financial  skills  are  always  valu¬ 
able  in  business  and  are  a  great  com¬ 
pliment  to  technical  knowledge. 

what  major  issues 
should  IT  depart¬ 
ments  plan  to  ad¬ 
dress  in  the  coming 
year?  Year  after 
year,  the  answer  to 
this  question  never 
changes  for  me.  There 
is  only  one  issue  that  IT 
departments  should  be 
addressing:  Is  IT  able  to  make  a  mate¬ 
rial  contribution  to  the  advancement 
of  your  organization’s  business  strat¬ 
egy?  Confronting  this  issue  may  lead 
to  some  interesting  decisions  around 
analytics,  the  cloud  and  other  areas. 


If  you  have  a  question 
for  one  of  our  Premier 
100  IT  Leaders,  send 
it  to  askaleader® 
computerworld.com, 
and  watch  for  this 
column  each  month. 


Linux  professionals  are  in  demand, 

with  75%  of  them  saying  they  have  been 
contacted  by  a  recruiter  in  the  past  six  months.  That’s  one  of 
the  findings  from  a  survey  conducted  by  the  Linux  Foundation 
and  tech  career  site  Dice.com.  If  you  need  Linux  talent,  you’ll 
have  a  hard  time  finding  it,  the  survey  found,  and  if  you  have 
it,  you’ll  have  a  hard  time  holding  on  to  it:  Over  a  third  of  the 
responding  Linux  pros  said  they  plan  to  switch  employers 
within  the  next  year.  More  often  than  not,  they’ll  be  looking 
for  more  money  when  they  do  so. 


Linux: 
it’s  GOQd 


to  Be  King 


Top  3  Incentives  Driving  Linux  Pros  to  New  Jobs 

More  money 

74% 

Better  work/life  balance 

61% 

Flexible  work  schedule/telecommuting 

47% 

It’s  worth  noting,  however,  that  in  a  separate  survey,  Rands- 
tad  Technologies  found  that  33%  of  all  tech  workers  will  prob¬ 
ably  look  for  a  new  job  over  the  next  year. 


Other  results  of  the  Linux  Foundation/Dice  survey: 

9% 

Average  increase  in  pay  for  tech  workers  with  Linux 
experience  from  January  2012  to  January  2013. 

93% 

Percentage  of  employers  who  plan 
to  hire  at  least  one  Linux  professional  within 
the  next  six  months. 

90% 

Percentage  of  employers  who  say  it’s  difficult 
to  find  Linux  professionals. 


SOURCE:  A  LINUX  FOUNDATION/DICE. COM  JANUARY  2013  SURVEY  OF  MORE  THAN 
850  HIRING  MANAGERS  AT  CORPORATIONS,  SMALL  AND  MIDSIZE  BUSINESSES, 
GOVERNMENT  AGENCIES  AND  STAFFING  FIRMS,  79%  OF  WHICH  ARE  BASED  IN 
NORTH  AMERICA.  AND  OF  MORE  THAN  2,600  LINUX  PROFESSIONALS 


Resumes: 

Suspicious 

Minds 


Here’s  a  challenge  for  job  seekers: 

You  need  to  find  a  way  to  overcome 
a  good  deal  of  suspicion  about  your 
resume’s  veracity.  This  is  what  a  re¬ 
cent  survey  found  on  this  topic: 


IT  leaders 

IT  professionals 

I  believe  most  IT  resumes 
contain  outright  lies. 

35% 

39% 

1  believe  most  IT  resumes 
exaggerate  experience. 

77% 

63% 

SOURCE:  TEKSYSTEMS  SURVEY  OF  OVER  2,000  IT  PROFESSIONALS  AND  OVER  1,500  IT  LEADERS.  JANUARY  2013 
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careers 


IT  Corp.,  Aliso  Viejo  (Orange 
County)  CA.  has  multiple  open¬ 
ings  at  various  levels  for  the  posi¬ 
tion  of  a  Systems  Analyst  - 
General;  Java;  Microsoft  and 
Mainframe.  Will  collect,  review, 
analyze  &  recommend  technol¬ 
ogy  &  Tools;  Use  independent 
judgment  &  discretion  to  analyze 
computer  systems  capabilities. 
Knowledge  &  hands  on  exp.  of 
Software  Development  life  cycle. 
Exp.  in  Global  Delivery  Model. 
Excellent  communication  skills, 
able  to  communicate  complex 
technical  concepts  to  all  levels. 
Excellent  analytical  and  problem 
solving  skills.  Travel  to  unantici¬ 
pated  client  sites  throughout  the 
U.S.  required.  Bachelor's  Degree 
with  2  yrs.  of  exp..  Mail  resume  & 
position  desired  to  Job  Number 
004RAUST  -  Attn:  Coleen  Ryan 
-  UST  Global  Inc.  20  Enterprise 
4th  Floor,  Aliso  Viejo,  CA  92656 

Technology  Manager: 

IT  Consulting  Company  (East 
Windsor,  NJ)  seeks  Technology 
Manager  to  oversee  devel¬ 
opment  and  maintenance  of  IT 
strategic  planning  and  projects. 
Approve  and  monitor  major  tech 
projects,  budgets,  procedures 
and  overall  IT  performance. 
Communicate  effectively  with 
internal  clients  to  identify  needs 
and  evaluate  alternative  IT  busi¬ 
ness  solutions.  Manage  main¬ 
tenance  of  databases  for  tracking 
validation  activities.  Oversee 
validation  and  performance  quali¬ 
fication  protocols  for  systems. 
Evaluate  data  processing  pro¬ 
posals  to  assess  project  feasibil¬ 
ity  and  requirements.  Please 
apply  with  2  copies  of  resume  to 
HRD,  Hermes  Technologies,  Inc., 
379  Princeton-Hightstown  Rd., 
East  Windsor,  NJ  08512. 

Sr.  Software  Engineers 

(Uniondale,  NY)  Dvlp,  create,  & 
modify  general  comp,  applies  si 
ware  or  specialized  utility  prgrms. 
Analyze  user  needs  &  dvlp  s / 
ware  solutions.  Dsgn  s/ware  or 
customize  s/ware  for  client  use 
w/the  aim  of  optimizing  opera¬ 
tional  efficiency.  May  analyze  & 
dsgn  d/bases  w/in  application 
area,  working  individually  or 
coordinating  d/base  dvlpmt  as 
part  of  a  team.  Any  suitable  corn- 
bin.  of  edu  &  exp  equal  to 
Masters  is  acceptable.  Will  also 
accept  Bachelors  +  5  yrs  rltd  exp. 
The  position  reqs  to  supervise 
programmers.  Major  field  of 
study  is  reqd  in  Comp  Sci.,  Engg 
(any),  Science  (any).  Mon  thru 
Fri.  9:00-5:00  p.m.  Offer  standard 
employment  benefits.  Apply  w/2 
copies  of  resume.  EC 

INFOSYSTEMS,  INC.,  50 
Charles  Lindbergh  Blvd,  Ste  411, 
Uniondale,  NY  11553 

IT  Corp.  Aliso  Viejo  (Orange 
County),  CA.  has  multiple  open¬ 
ings  at  various  levels  for 
Business  Analyst:  Will  work  inde¬ 
pendently  to  define,  test  and 
implement  project  functional 
requirements;  Design  &  Execute 
functional  test  procedures. 
Global  Delivery  model  exp. 
Excellent  communication  skills, 
able  to  communicate  complex 
technical  concepts  to  all  levels. 
Excellent  analytical  and  problem 
solving  skills.  Travel  to  unantici¬ 
pated  client  sites  throughout  the 
U.S.  required.  Bachelor’s  Degree 
with  2  to  5  yrs.  of  exp.  Mail 
resume  &  position  desired  to  Job 
Number  002RAUST  -  Attn: 
Coleen  Ryan  -  UST  Global  Inc. 
20  Enterprise  4th  Floor,  Aliso 
Viejo,  CA  92656 

Willis-Knighton  Health  System  in 

Shreveport,  LA  has  an  opening 

for  Database  Administrator  to 

plan,  design,  support,  &  maintain 

databases  of  MS  SQL,  Oracle,  & 

Cache;  manage  secured 

accesses;  develop  backup  & 

recovery  strategies  monitor 

capacity  &troubleshoot  to  ensure 

performance.  MS  in  Computer 

Science  or  BS  +  5  yrs.  related 

exp.  Please  visit  our  website, 

http://www.wkhs.com 

Interested  candidates  send 
resume  to:  Google  Inc.,  PO  Box 
26184  San  Francisco,  CA  94126 
attn:  Keeshia  Moultrie.  Please 
reference  job  #  below: 

Software  Engineer  Position 
/Kirkland.  WA1:  #1615.1552: 
Design,  develop,  modify,  and/or 
test  sw  needed  for  various  inter¬ 
net  search  engine  co.  projects. 
Exp.  Inc.:  write  backend  sw;  dis¬ 
trib  syst  algorithms;  distrib  fault- 
tolerant  designs;  data  struct, 
algorithms,  &  perf  analysis  of 
large  scale  distrib  syst;  debug 
large  scale  distrib  syst;  C++, 
Java,  or  Python;  write  codes; 
ntwrkng,  incl  TCP,  UDP,  IP,  RTP 
or  RTSP. 

C/3 

Searching  for  diverse  IT  Talent? 

d-> 

Let  Computerworld  IT  Careers 

dJ 

put  your  recruitment  message  in 

CJ 

front  of  over  1,400,000  qualified 

IT  professionals! 

1— 

Contact  sales  for  details 

at  800  762  2977 

DEPLOYMENT  ENGINEER: 
Peterson  Technology  Partners 
seeks  qualified  deployment  engi¬ 
neer  for  its  headquarters  located 
in  Rolling  Meadows,  IL  &  various 
&  unanticipated  work  locations 
throughout  the  U.S.  Master’s 
degree  in  Comp.  Sci.,  Electrical 
Engg.,  or  in  a  closely  related  field 
of  study  (Alt.,  will  accept  a 
Bachelor's  degree  in  the  above 
fields  +5  yrs  of  related  progres¬ 
sive  exp.)  +1  yr  exp.  in:  admini¬ 
stration  &  implementation  of  Web 
apps  using  IBM  Websphere 
Application  Server  7. 0/6. 1/6.0/ 
5.x, Websphere  Process  Server 
7.0/6. 1/6.0,  Portal  Server  5.1/6.X  , 
Websphere  MQ  5.3/6. 0  &  IBM 
HTTP  Server  7.0/6. 1/6.0  on  vari¬ 
ous  platforms  like  AIX/Linux/Sun 
Solaris/Windows;  install  &  config¬ 
ure  Websphere  Process  Server 
(6. 0/6. 1/7.0)  &  Websphere  Portal 
Server  (6.0  &  6.1 )  on  Linux  &  AIX 
Operation  systems  thru  GUI  or 
silent  install;  assist  in  building 
system  features  using  Web 
sphere,  MQ  Series,  MQ  Work 
flow  &  related  client-server  tools; 
system  admin,  of  AIX  &  Linux 
servers  which  require  upgrading 
OS  level  &  apply  patches  on  top; 
deploy  Apps.  in  WAR,  JAR  & 
EAR  formats  on  Websphere 
servers;  enable  Global  Security 
for  Websphere  using  LDAP  or 
custom  registry;  configure  wily 
introscope  &  set  up  PMI  Metrics 
to  monitor  &  tune  the  application 
servers;  shell  script  incl.  JACL  & 
Jython  to  automate  various  proc¬ 
esses  in  Websphere  or  batch  job; 
&  design  logical  &  physical  data¬ 
base  structures  using  Oracle  & 
DB2  Databases.  An  EOE. 
Respond  by  mail  to  Peterson 
Technology  Partners,  1600  Golf 
Rd,  Ste  1206,  Rolling  Meadows, 
IL  60008.  Refer  to  ad  code:  PTP- 
022513 


Infosys  Limited  has  multiple,  full¬ 
time  openings  in  Plano,  TX  and 
various  unanticipated  locations 
throughout  the  U.S.  Equal 
Opportunity  Employer  M/F/D/V. 

Technology  Leads-U.S. 

(Mainframe)  needed  in  Plano, 
Texas,  and  various  unanticipated 
locations  throughout  the  U.S.  to 
design,  develop,  test,  and  deploy 
specific  modules  for  software 
products.  Please  apply  online  at: 
h  ttp  ://www.  infosys.com/careers/ 
apply-now/us-jobs.asp  and 
search  for  Job# 

Inf  EXTERNAL  59838375  1 


Research  in  Motion  Corporation 
(US),  Andover,  MA,  positions  are 
available: 

MA7046  -  Software  Developer 
MA7047  -  Software  Developer 

Submit  resume  to  Research  in 
Motion  Corporation  (US),  to  PO. 
Box  141394,  Irving,  TX,  75014- 
1394  U.S.A.,  referencing  appro¬ 
priate  job  title  and  requisition 
number. 


Interested  candidates  send 
resume  to:  Google  Inc.,  PO  Box 
26184  San  Francisco,  CA  94126 
attn:  Keeshia  Moultrie.  Please 
reference  job  #  below: 

Business  Systems  Integrator 
(Mountain  View,  CA) 
#1615.3230  Design  analytical 
solutions  that  provide  data  to 
answer  complex  business  deci¬ 
sions.  Exp  incl:  PL/SQL;  Unix; 
TCP/IP;  Avaya  PBX,  CMS,  & 
IVR;  VoIP;  data  analysis;  data¬ 
base  admin;  ntwrk  admin;  & 
design,  plan,  implement,  &  sup¬ 
port  of  traditional  &  IP-based  call 
center  solutions,  incl  CTI,  IVR,  & 
reporting. 

SW  Eng  Positions  (Mountain 
View,  CA):  Design,  develop, 
modify,  and/or  test  software 
needed  for  various  Google  pro¬ 
jects.  Exp.  incl: 

#1615.1625:  C  ,  C++,  STL,  &/or 
MapReduce;  MapReduce  pipe¬ 
lines;  data  struct,  algorithms,  & 
design  patterns;  design  &  imple¬ 
ment  low  latency  srvr  side  query 
process;  &  prob  &  perf  analysis 
of  large  scale  distrib  syst. 
#1615.4066:  Program  in  an  oo 
lang;  algorithms;  natural  lang 
process;  stat  modeling;  &  Al. 


IT  Corp.  Aliso  Viejo  (Orange 
County),  CA.  has  multiple  open¬ 
ings  at  various  levels  for 
Software  Architects  -  General; 
Java;  Microsoft  &  Mainframe. 
Independently  design,  document 
&  develop  software  architecture 
&  high  level  design  for  large  or 
mid-size  projects:  Exp.  with 
Global  Delivery  Model.  Excellent 
communication  skills,  able  to 
communicate  complex  technical 
concepts  to  all  levels.  Excellent 
analytical  and  problem  solving 
skills.  Travel  to  unanticipated  cli¬ 
ent  sites  throughout  the  U.S. 
required.  Bachelor's  Degree  with 
2  to  5  yrs  exp.  Mail  resume  & 
position  desired  to  Job  Number 
003RAUST  -  Attn:  Coleen  Ryan 
-  UST  Global  Inc.  20  Enterprise 
4th  Floor,  Aliso  Viejo,  CA  92656 


IT  Corp.  ,  Aliso  Viejo  (Orange 
County),  CA.  has  multiple  open¬ 
ings  at  various  levels  for  two 
positions:  Project  Managers  to 
manage  allocation,  utilization 
cost,  time  schedules  &  standards 
with  well-defined  milestones.  And 
multiple  openings  at  various  lev¬ 
els  for  Test  Managers  to  manage 
allocation.  Utilization  of  quality  & 
Testing  resources  in  the  project. 
Exp.  in  Global  Delivery  Model. 
Excellent  communication  skills, 
able  to  communicate  complex 
technical  concepts  to  all  levels. 
Excellent  analytical  and  problem 
solving  skills.  Travel  to  unantici¬ 
pated  client  sites  throughout  the 
U.S.  required.  Bachelor's  Degree 
with  2  to  5  yrs.  of  exp.  or 
Master's  Degree  with  2  yrs.  Exp. 
Mail  resume  &  position  desired  to 
Job  Number  001RAUST  -  Attn: 
Coleen  Ryan  -  UST  Global  Inc. 
20  Enterprise  4th  Floor,  Aliso 
Viejo,  CA  92656 _ 


Capgemini  Financial  Services 
(Rosemont,  IL),  a  global  technol¬ 
ogy  and  consulting  firm,  is  seek¬ 
ing  experienced  professional 
consultants  with  a  combination  of 
market-critical  skills  and  expe¬ 
rience  in  a  variety  of  different 
areas  such  as:  financial  services 
domains  (banking,  insurance  and 
capital  markets),  computer  lan¬ 
guages,  operating  systems, 
methodologies,  testing  and 
reporting  tools,  business  analy¬ 
sis,  and  other  software  systems/ 
tools.  Multiple  positions  available. 
We  have  openings  for  and 
Managers  (MS+2  or  BS+5; 
Ref#Q1-13A)  as  well  as  Lead 
Consultants  (MS+1  or  BS+5; 
Ref#Q1-13B)  to  manage  consult¬ 
ing  teams  and  client  relation¬ 
ships.  We  are  also  seeking  Sr. 
Consultants  (BS+2;  Ref#Q1- 
13C)  to  design,  develop,  test  and 
implement  business  and  financial 
systems  software  applications. 

Significant  flexibility  on  the  part 
of  the  consultant  is  required.  All 
consulting  positions  require  will¬ 
ingness  to  travel  or  relocate  on  a 
short/long  term  basis  to  projects 
at  various  unanticipated  locations 
throughout  the  U.S.  Will  accept 
resumes  from  qualified  appli¬ 
cants  living  throughout  the  US, 
provided  the  consultant  is  willing 
and  able  to  comply  with  travel/ 
relocation  requirements.  Some 
positions  may  permit  temporary 
telecommuting  arrangements  or 
other  flexible  working/living 
arrangements  subject  client 
needs  and  project 
requirements.  All  consulting  posi¬ 
tions  are  based  out  of  our 
Rosemont,  IL  headquarters;  cli¬ 
ent  assignments  and  worksite 
locations  throughout  the  US  are 
varied,  unanticipated  and  subject 
to  change.  Send  resume  with 
complete  listing  of  consulting/ 
business  analysis/IT  skills  to 
Resumeshr.fsgbu@capgemini.com 
and  indicate  Ref#  in  subject 
heading  of  email.  No  calls.  EOE 


Interested  candidates  send 
resume  to:  Google  Inc.,  PO  Box 
26184  San  Francisco,  CA  94126 
attn:  Lisa  Harrington.  Please  ref¬ 
erence  job  #  below: 

Business  Systems  Integrator 
(New  York,  NY)  #1615.3922 
Design  analytical  solutions  that 
answer  complex  business  deci¬ 
sions.  Exp  incl:  Java;  web  svcs; 
Jscript;  XML;  CSS;  Regular 
Expressions;  algorithms;  creation 
of  pltfrm  components;  dvlpmnt  of 
sw  syst;  &  design  &  implement  of 
desktop  &  web  appl  &  oo  sw. 

SW  Eng  Position  (NY,  NY): 
Design,  develop,  modify,  and/or 
test  sw  needed  for  various 
Google  projects.  Exp.  incl: 
#1615.4974  arch,  design,  prog 
&  tech  lead  roles;  bus  analysis 
for  high-load  &  frequency  syst; 
data  struct,  algorithms  and  data 
model  on  relational  &  non-rela¬ 
tional  storage  syst;  PHP;  Jscript; 
AJAX;  HTML;  CSS;  MVC;  Linux; 
large-scale  data  index;  parallel  & 
distrib  compute;  dvlpmnt  of  multi¬ 
user,  web-based  appl;  &  design 
&  implement  of  large-scale  distrib 
syst,  databases,  rule-based  syst, 
message,  &  data  mine. 
#1615.3852  Java  or  Jscript; 
web  dvlpmnt,  incl  HTML,  CSS,  & 
Jscript;  cross  browser  dvlopmnt, 
test,  profiling, &  debug;  serve  & 
consume  REST-based  web  svcs; 
design,  implement,  test,  &  maint 
of  modular  sw  components;  mod¬ 
ify  source  code;&  identify  & 
refactor  suboptimal  components 
&  commun  of  changes  to  key 
stakeholders. 
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TRUE  TALES  OF  IT  LIFE  AS  TOLD  TO  SHARKY 


COFFEE 


WATER 


FILTER 


C  LOSF 


TURN  ON 


you  went  through  college  and 
never  learned  how  to  make 
coffee?”  The  answer:  ‘There 
was  always  a  Starbucks 
nearby.  Coffee  comes 
from  Starbucks.” 

Not  Playing 
His  Song 

User  calls  this  pilot  fish 
in  a  panic:  He  dialed  in  to 
a  webconference,  but  he 
can’t  hear  the  music  that  al¬ 
ways  played  while  he  waited 
in  the  past.  That  was  true, 
fish  reports,  but  then 
“l  took  a  look  at 
the  invitation  and 
found  that  the 
user  was  the  host. 
And  because  he 
was  logged  in,  the 
meeting  had  begun, 
so  no  music  was  go¬ 
ing  to  play." 


Didn’t  You  Take  Programming  101? 

New  hire  is  a  fresh  graduate  of  a  major  university,  so  pilot  fish  is  surprised  he 
needs  help  with  the  coffee  maker.  “I  push  the  button  but  nothing  happens."  Fish 
sees  there’s  no  water  in  the  machine  -  nor  coffee.  Just  make  a  fresh  pot,  he  says. 
New  hire:  “How  do  you  do  that?”  Fish  decides  a  brand-new  employee  wouldn’t 
be  pulling  his  leg,  so  he  walks  him  through  the  process.  You  put  the  coffee  in  the 


top  and  pour  some  water  in,  then 
press  the  brew  button,  he  explains. 
New  hire  has  some  trouble  finding 
the  coffee  (it’s  in  a  bag  right  next  to 
the  coffee  maker,  labeled  “coffee"), 
then  prepares  to  pour  the  whole  bag 
into  the  machine.  Fish  introduces 
the  concepts  of  coffee  filters  and 
measuring.  And  seeing  that  this  guy 
has  truly  never  made  a  pot  of  coffee 
before,  he  goes  ahead  and  explains 
how  you  avoid  overflow  by  filling 


the  pot  with  water  as  a  guide.  New 
hire  does  that,  then  puts  the  pot 
of  water  back  on  the  coffee  maker 
and  presses  start.  Nothing  happens. 
Fish  explains  that  he  has  to  pour  the 
water  into  the  receptacle  at  the  back 
and  put  the  empty  pot  in  the  holder. 
Once  everything  is  in  place,  new 
hire  presses  start  again,  then  im¬ 
mediately  asks,  “Where’s  the  coffee?’ 
You  have  to  give  it  a  few  minutes  to 
brew,  fish  says.  “By  the  way,  how  is  it 


Off  the  Hook 

At  the  small  college  where  this  pilot 
fish  is  IT  director,  the  topic  of  students’ 
lost  emails  comes  up  at  a  staff  meet¬ 
ing.  “Before  I  could  say  anything,  a 
midlevel,  non-tech  manager  decided 
to  educate  everyone  on  how  email 
can  get  lost,”  says  fish.  “Emails  travel 
on  the  Internet  via  ‘hooks,’  she  said. 

In  the  nicest  way  possible,  I  tried  to 
correct  her.  She  cut  me  off,  said  I  was 
wrong,  and  continued,  explaining 
how  emails  can  sometimes  fall  off  the 
hooks  and  can  never  be  recovered. 
There  was  no  way  for  me  to  say  any¬ 
thing  without  bursting  out  laughing. 

So  I  left  it  at  that.” 


»  Make  Sharky  laugh!  Send  me 
your  true  tale  of  IT  life  at  sharky® 
computerworld.com.  You’ll  snag  a 
snazzy  Shark  shirt  if  I  use  it. 


©  CHECK  OUT  Sharky’s  blog,  browse  the  Sharkives  and  sign  up  for  home  delivery  at  computerworld.com/sharky. 
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—  OPINION 

BART  PERKINS 

Cloudbursts  Ahead 


Organizations 
that  depend 
on  cloud 
services  need 
to  manage 
four  areas. 
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managing  partner 
at  Louisville,  Ky.- 
based  Leverage 
Partners,  which  helps 
organizations  invest 
well  in  IT.  Contact 
him  at  BartPerkins® 
LeveragePartners.com. 


MOVING  TO  the  cloud  may  reduce  infrastructure  costs  and  head¬ 
aches,  but  clouds  have  their  shortcomings.  When  they  rain,  mil¬ 
lions  can  quickly  become  drenched.  In  the  past  year,  Amazon, 
Microsoft,  Google  and  other  providers  experienced  problems, 


from  minor  disruptions  to  major  outages.  A  June 
2012  headline  captured  the  fallout:  “Modern  life 
halted  as  Netflix,  Pinterest,  Instagram  go  down.” 

The  service  interruptions  experienced  by  those 
companies  and  others  disappointed  countless  con¬ 
sumers,  but  it  was  worse  than  a  disappointment 
for  the  businesses  themselves.  They  had  come 
to  depend  heavily  on  cloud  reliability;  when  the 
cloud  services  they  had  put  their  trust  in  failed,  it 
was  as  if  they  had  ceased  to  exist.  All  the  outages 
were  temporary,  of  course,  but  revenues  were  lost 
during  the  downtime,  and  afterwards  customers 
wrote  blog  posts  expressing  everything  from  dis¬ 
appointment  to  anger,  with  some  proclaiming  that 
they  would  take  their  business  elsewhere. 

Organizations  that  depend  on  cloud  services 
need  to  manage  four  areas  to  help  ensure  that 
their  dependence  isn’t  a  liability: 

■  Providers.  Ideally,  a  cloud  provider  should 
be  managed,  monitored  and  measured  like  other 
critical  IT  suppliers.  It  is  naive  to  take  an  “out  of 
sight,  out  of  mind”  approach  with  cloud  provid¬ 
ers.  Begin  by  setting  clear  performance  goals  with 
well-defined  metrics.  Assign  staff  to  monitor  per¬ 
formance  and  manage  the  supplier  relationship. 

■  Resiliency.  All  cloud  providers  suffer  periodic 
service  degradation  and  occasional  full  outages. 
Unfortunately,  restoration  of  normal  service  may 
not  be  fast  enough  to  meet  your  business  needs. 
On  its  blog,  Netflix  says,  “It  is  still  early  days  for 
cloud  innovation,  and  there  is  certainly  more  to 
do  in  terms  of  building  resiliency  in  the  cloud.” 
The  blog  describes  the  steps  Netflix  is  taking  to 
improve  resiliency  within  Amazon’s  cloud. 

Your  enterprise  architecture  must  also  be 
designed  for  resiliency.  Typical  approaches  involve 


spreading  business  functions,  data  and  other 
assets  across  the  cloud  world.  Most  enterprises 
separate  entities  geographically  within  a  single 
provider’s  cloud.  The  truly  paranoid  may  want  to 
spread  their  assets  across  multiple  cloud  providers. 

■  Executive  expectations.  IT  professionals  tend 
to  be  realistic  about  the  reliability  that  is  possible 
in  the  cloud,  but  a  lot  of  executives  on  the  business 
side  expect  well-known  cloud  providers  to  offer 
flawless  service.  They  want  “dial-tone”  reliability, 
like  the  service  provided  by  the  old  Bell  system. 
But  that’s  a  standard  that  cloud  suppliers  can’t 
meet  now  and  are  unlikely  to  fulfill  anytime  soon. 
(And  even  Ma  Bell  experienced  occasional  service 
problems.)  And  even  if  cloud  vendors  do  one  day 
offer  dial-tone  reliability,  it  would  likely  carry  a 
premium  price  tag  and  would  be  cost-effective 
only  for  high-end  products. 

■  Customer  relations.  Customers  may  become 
angry  when  their  favorite  services  or  phone 
apps  are  slow  or  temporarily  unavailable.  Your 
customer  service  staff’s  response  must  be  sym¬ 
pathetic,  informative  and  timely.  When  outages 
occur  or  service  levels  are  significantly  hampered, 
acknowledge  the  issue,  apologize  profusely,  post 
status  updates  regularly,  and  share  preventative 
measures  as  they  are  developed. 

While  the  cloud  offers  a  valuable  alternative  to 
extensive  and  expensive  infrastructure,  it’s  not  yet 
perfect.  When  IT  comes  under  attack  for  flawed 
cloud  service,  remind  executives  what  prompted 
the  move  to  the  cloud:  the  difference  between 
costs  incurred  with  a  cloud  provider  and  those 
required  to  build  and  operate  an  enterprise  infra¬ 
structure.  Most  good  bargains  require  some  level 
of  trade-off,  and  clouds  are  no  exception.  ♦ 
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